Fraudulent scheme to steal bank card data via Netflix

by Cil Das Без рубрики

Many people know about this excellent service where there is always something to watch in their free time. I know that many people use a paid subscription. And as always, you can’t do without scammers; they came up with a new scheme.

Prepared using the service and a paid Canva Pro subscription Prepared using the service and a paid Canva Pro subscription

You are on the “My Old Computer” channel. The main purpose of the article is to warn citizens about possible schemes of scammers on the Internet, as well as to provide recommendations on how to counter such tricks. «Forewarned is forearmed». On the channel I often cover various schemes, I recommend reading other publications on this topic.

The scheme is as follows: scammers gain access to a database of active and paid Netflix service accounts. One can only guess in what ways, it could be a hacker attack or some kind of leak of user data. In general, scammers only need the email address associated with your Netflix account.

Phishing emails are sent to the email addresses of potential “victims”, which contain a notification that the service has experienced a failure and it is necessary to update your bank card information to continue using it. A link is offered to follow; accordingly, it has “suspicious” content.

Prepared using the service and a paid Canva Pro subscription Prepared using the service and a paid Canva Pro subscription

On the one hand, such letters are unlikely to reach their destination, since anti-spam will work and such mailings will end up in the spam folder. Of course, there are individuals who open and check something from this folder, but I think the number of such users is very small.

But scammers have come up with a way around it. The content contains a link to the page with the CAPTCHA. On which they will supposedly check you whether you are a real user or a robot that is engaged in some kind of automated activity. A common procedure on many services that does not raise suspicion. But the point is that the user passes the captcha and goes to a phishing page, where the fraudsters plan to steal their bank card data. There the user enters his data, goes through the “confirmation” procedure and says goodbye to the funds from the card account.

Prepared using the service and a paid Canva Pro subscription Prepared using the service and a paid Canva Pro subscription

In this case, the “anti-spam” email does not work, since the verification bot only reaches the page with the CAPTCHA, and no further verification occurs. Such a page is not defined as malicious. For this reason, incoming emails do not end up in the spam folder and are considered safe.

Be careful if you receive a similar message to your email address. Do not click on any links from such emails. Go to the official Netflix website and check your profile information. A similar scheme applies to other video services.

Thank you all for your attention, do not forget to subscribe to the channel so as not to miss new publications.