[ad_1]
This sounds like an ordinary email, asking the Netflix user to update his record so as not to interrupt the service. But do not fall into the trap: it's a scam to collect data from the victims. ESET, a proactive threat detection company, reports that cybercriminals have chosen Netflix subscribers as new targets.
When badyzing the details of the email, you can see some points stating that it is a malicious act. The first and most visible of them is the sender of the message. Although it appears that Netflix is the name of the email account resembling a code, it is very different from the email address usually used by the company for: contact with customers.
By badyzing other points of the text, it is possible to notice that there are two links and a button in the main structure of the email. These three elements point to a malicious address, which has nothing to do with Netflix.
By accessing one of the links, the victim sends (unwittingly) an attempt to download content to the primary malicious server, the server responds to the request by directing the victim to another destination server whose page is completely blank, a single dot (.) at the top of the screen. The point is also the only information displayed in all the source code of the page, so that it misses malicious content.
An attacker could easily have designed this phishing campaign to collect valid email addresses for later use in other well-crafted malicious campaigns, as he would only try to access it. email links that were still valid and active. In addition, the scammer would have strong indications that all people who clicked on the link are Netflix customers.
If you are the victim of this phishing, you must redouble attention on all emails received after this message. Netflix provides tips to protect your data and report the case. Even the Ohio Police Department in the city of Solon issued a warning about the fake message.
If you clicked on a malicious email and the page was blank or blank. This does not mean that the user is safe. However, it may be best to click on a phishing email and direct it to an out-of-air page rather than stumbling across a page that does not display content.
In general, when phishing is correctly detected and reported, the providers responsible for maintaining the pages in the air remove them, which, in most cases, is enough for the threat to be interrupted.
Source link
