Convincing fake Netflix page phishing for victims’ credit cards

Posted on by ESET Ireland

ESET Ireland warns users to look out for a well made fake Netflix page, that includes a security certificate, but collects’ victims’ credit card numbers for the cybercriminals.

A genuine-looking email was received by ESET Ireland, appearing to be a warning about an expiring Netflix subscription, titled “Your cancellation confirmation”, claiming the user’s payment at the end of a billing cycle failed, so their membership is getting cancelled. Then a big red button invites them to “restart membership”. Anyone with an existing Netflix account would be alarmed by this and would be likely to click on the “restart” option.

1.png

We’ve seen similar “Netflix scams” before, but the current seems to be even more advanced. The button links to a convincing looking fake Netflix website, complete with “https” with a padlock and an address that looks Irish

2

and even a security certificate for the page.

4.png

After “signing in” with their email and password,

3.png
the victim is asked to fill in all their address and billing details, including their credit or debit card details, and so all this personal data is handed over to the scammers.

5.png

The page then redirects to the actual Netflix site.

ESET Ireland recommends Netflix users do not use links in emails to log into their accounts and should particularly avoid filling in any payment details. They should instead log in and check their status the way they always do, and should delete any such suspicious emails, as well as warn their friends about the scam.

by Urban Schrott and Ciaran McHale, ESET Ireland

3 thoughts on “Convincing fake Netflix page phishing for victims’ credit cards

  1. Pingback: Netflix Users Warned to Watch out for Scam
  2. Pingback: Irish Netflix users warned over 'advanced' and 'genuine-looking' scam doing the rounds | Buzz.ie
  3. Pingback: WTB: Lenovo Patches Arbitrary Code Execution Flaw – f1tym1

Leave a comment