• About Us
  • Contact
  • Careers
  • Send Us a Tip
Menu
  • About Us
  • Contact
  • Careers
  • Send Us a Tip
CyberNews logo
Newsletter
  • Home
  • News
  • Editorial
  • Security
  • Privacy
  • Resources
Menu
  • Home
  • News
  • Editorial
  • Security
  • Privacy
  • Resources
CyberNews logo

Home » Security » Netflix is a phishing goldmine for cybercriminals

Netflix is a phishing goldmine for cybercriminals

by Chris Stokel-Walker
17 August 2020
in Security
0
Netflix on smartphone
104
SHARES

We all love Netflix – which leaves us open to being tricked.

The amount of time we’ve spent scrolling through streaming services such as Netflix, Amazon Prime, YouTube, and Twitch has all increased as we’ve been locked indoors trying to avoid the coronavirus. And for scammers who try to capitalize on the latest trends and interests of the general public, there’s a potential goldmine to trick people into giving away personal details.

Cybercriminals often rely on our willingness to land a bargain or learn more about a favored product to trick us into clicking suspicious links. When we do so, the phishing attack often takes our personal details including usernames and passwords to key services, and then uses those to unlock more personal information such as bank accounts.

And there are few bigger household names right now than Netflix. According to cyber resilience firm Webroot’s real-time anti-phishing systems, the number of URLs that mention Netflix has shot up 525% between February and March – and 853% by May.

Netflix is the obvious choice

“Household names are often impersonated with phishing scams because it’s a fairly simple and easy way for attackers to target a large volume of individuals,” says Kelvin Murray, senior threat researcher at Webroot. “These threats are unfortunately only becoming more sophisticated and using popular public streaming services allows cybercriminals to appear more believable, and it only takes one click to put users at risk.”

The desire to consume the massive back catalog of Netflix content, perhaps without paying the streaming service’s monthly subscription fee, is driving many to visit links that seem like they’re attached to Netflix, but are actually traps laid by cybercriminals.

It’s not just Netflix-connected URLs that have seen a sharp increase in use by cybercriminals looking to capitalize on our gullibility and willingness to bag a bargain – or access content illegally for free. Links that appear to be connected to YouTube have also seen a staggering 3,064% increase in the first month of lockdown, while Twitch and HBO saw a 337% and 525% increase respectively.

How to stop the rot

It can be easy to be hoodwinked by seemingly legitimate services, and the standard of design and information that cybercriminals use to try and trick us into falling victim to phishing attacks has become significantly better over time.

In the early days of such phishing attacks, you could often identify a fraudulent email or website by the poor grammar, syntax, and spelling that would dot the page. But now things have become more sophisticated, with those tell-tale errors ironed out.

Now it’s far too easy to fall foul of such an attack and to end up giving up precious personal details to hackers that can then do with that what they want.

Tackling the problem

And it’s not just home users that are struggling to stay on top of the potential risks posed by such sites. According to Webroot, such attacks are commonplace on business networks, particularly now that the general population is often working from home and combining business with pleasure – often on the very same devices they use to access work networks remotely.

“Better security systems and training are key for protection, but the most important thing that businesses can do is back up data and ensure that backup can be restored, in case a phishing attack on an employee leads to a ransomware infection on the company network,” says Murray. 

“To defend against these kinds of attacks, individuals should undertake security awareness training and remain vigilant in scrutinizing the types of emails they receive. This should also be underpinned by cybersecurity technology such as email filtering, anti-virus protection, and strong password policies.”

Share104TweetShareShare

Related Posts

Telegram app on mobile

Watch out: there’s a new Telegram scam about

15 January 2021
Nohow International leaks sensitive worker data

12,000+ workers’ IDs, banking details, and other personal data leaked by UK staffing agency

14 January 2021
Email icon on laptop screen

How phishing attacks are evolving and why you should care

14 January 2021
Ransom message on laptop screen

Why ransomware attacks will explode in 2021

12 January 2021
Next Post
People in front of Huawei Shop

Huawei takes a new hit from the US

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Popular News

  • 70TB of Parler users’ messages, videos, and posts leaked by security researchers

    70TB of Parler users’ messages, videos, and posts leaked by security researchers

    81962 shares
    Share 81952 Tweet 0
  • Tutanota vs. ProtonMail: which is the better secure email service?

    0 shares
    Share 0 Tweet 0
  • 1 million highly sensitive NSFW pictures leaked by Korean teen dating app

    59 shares
    Share 59 Tweet 0
  • Bitwarden Review

    0 shares
    Share 0 Tweet 0
  • The ultimate guide to safe and anonymous online payment methods in 2021

    13 shares
    Share 13 Tweet 0
NSFW: tech support workers share their oddest job experiences

NSFW: tech support workers share their oddest job experiences

15 January 2021
This fake TikTok service promises free followers but gives you free malware instead

This fake TikTok service promises free followers but gives you free malware instead

15 January 2021

These researchers create mouth-watering (but fake) pizza images. Why?

15 January 2021
Telegram app on mobile

Watch out: there’s a new Telegram scam about

15 January 2021
Samsung launches new flagship Galaxy S smartphone early, targets remote workers, gamers

Samsung launches new flagship Galaxy S smartphone early, targets remote workers, gamers

15 January 2021
An unintended consequence: can deepfakes kill video evidence?

An unintended consequence: can deepfakes kill video evidence?

14 January 2021
Newsletter

Subscribe for security tips and CyberNews updates.

Email address is required. Provided email address is not valid. You have been successfully subscribed to our newsletter!
Categories
  • News
  • Editorial
  • Security
  • Privacy
  • Resources
  • VPNs
  • Password Managers
  • Secure Email Providers
  • Antivirus Software Reviews
Tools
  • Personal data leak checker
  • Strong password generator
About Us

We aim to provide you with the latest tech news, product reviews, and analysis that should guide you through the ever-expanding land of technology.

Careers

We are hiring.

  • About Us
  • Contact
  • Send Us a Tip
  • Privacy Policy
  • Terms & Conditions
  • Vulnerability Disclosure

© 2021 CyberNews

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy Policy.

Home

News

Editorial

Security

Privacy

Resources

  • In the News
  • Contact
  • Careers
  • Send Us a Tip

© 2020 CyberNews – Latest tech news, product reviews, and analyses.

Subscribe for Security Tips and CyberNews Updates
Email address is required. Provided email address is not valid. You have been successfully subscribed to our newsletter!