Hackers use Netflix, HBO, and other streaming sites in phishing attacks

Via The Independent

New research from Webroot has shown that companies such as Youtube, Netflix, HBO, and other streaming services have been increasingly found in phishing URLs.

The Issue

Hackers seem to be targeting streaming service users much more frequently – Netflix phishing attempts increasing 60% in July 2020 compared to July 2019 and over 600% from March to July 2020 compared to the previous year. This coincides with the duration of many countries’ lockdown period which saw a rise in the use of streaming services.

Phishing URLs also frequently contained Disney+, Amazon Prime, HBO and Twitch.

Your move

Know how to spot phishing attacks.

Phishing attacks, especially if they’re leveraging streaming sites, are likely trying to steal your credentials so they’re likely to link to a site that looks like a Netflix log-in page or a Youtube sign-in site. Here’s how you quickly tell if it’s a phishing attempt.

Scrutinize the email. Is the email coming from the right address? Check the email address and name closely to ensure there’s nothing off – a typo, or something you don’t even recognize. It it looks off, delete it.

What’s the messaging? Clever hackers will send phishing emails telling you’ve been hacked and requiring you to reset your password. But the link asks you to enter your original password first. Most services don’t require you to enter your old password if you’ve reset it, and it’s even less likely if a reset it needed because of a hack or data breach. If you’re asked for your password, don’t give it up.

Check the site. If the email does look convincing and you click through to the site, look at the small details. Are there any typos, weird grammar or phrases? Does the website match or is there an old logo being used? The URL is often a dead giveaway as well – if it’s not the official company URL, run away.

To learn more, visit The Independent.

Show More
Back to top button