A Netflix phishing email is on the loose, and all online streaming media service subscribers need to be aware.
Researchers are warning that corporate accounts may be at risk if they don’t take precautions against phishing emails that appear to come from Netflix.
Suppose employees use the exact login details for their accounts like Netflix as they do for their company’s account. In that case, campaigns like this could put corporate networks at risk and jeopardize company data.
The company behind this anti-phishing filter claims that it uses Unicode characters to circumvent NLP scanning in traditional anti-spam filters.
Unicode helps to translate text between different languages, but it can also be exploited to create a fake web address.
For instance, you could register a fake domain name, which would translate into a legit one. This is called a homograph (or misspelling) hack.
Unicode is also used for the senders’ names, such as “Netflix” and “Help Desk.” However, the threat actor did not stop there.
“Obfuscation techniques include breaking up the words into unrecognizable pieces, using white on white texts, and using symbols from different languages to confuse the Natural Language Processing (NLP) software.”
For example, using two V letters next to each other will be read as two V’s by a machine. However, VVs look like Ws to someone skimming through the text.
Phishing scams often rely on classic social engineering tactics, including rushing people into action and piggybacking on current news stories.
While 52% of the emails spotted by our team used this lure, other subject lines included “Netflix Cancellations Confirmed” and “$0.99 Netflix Subscription Renewal Ending.”
It mainly targets users in the United States and the United Kingdom. The concern for organizations is whether an employee’s credentials are harvested and the victims re-use them for their online activities.
Both organizations and individuals must be aware of how attackers use the 24-hours media cycle to generate new, targeted cyber-security threats. In addition, it further highlights the need for better anti-phishing tools.
This Is Not The First Netflix Phishing Email, Nor Will It Be The Last
Microsoft Defender found two new types of malware in Netflix phishing emails in 2019 that hit its Office 365 (Office Online) customers. This malware was detected by their security systems and mitigated before it could be delivered to end users.
Phishing emails such as these are not just hard to detect but also easy to create. When targeted at unsuspecting users, they’re highly effective. They are designed to trick people into thinking that if they don’t click on that link or download that file, then something terrible will occur.
This means more Netflix phishing emails will likely occur as long as the streaming media service remains very popular. Sophisticated attacks can’t be detected simply relying on training and the human eyes. When in doubt, always check your account at the official website and not through links in an email.