Attackers Are Creating Fake Netflix Websites To Steal Personal Information
As people across the globe search for new sources of entertainment while being confined at home during the COVID-19 lockdown, streaming services like Netflix and Disney+ have experienced a significant amount of new subscribers. Unfortunately, cybercriminals are taking advantage of the increasing popularity of these services by diligently targeting individuals with counterfeit sites designed to steal sensitive information.
Mimecast, a cybersecurity firm, identified more than 500 suspicious websites impersonating various streaming services including Netflix and Disney+. These spoofed sites often appear almost identical to the actual login pages of Netflix and Disney+ and entice users with the offer of “free” subscriptions in an attempt to steal data such as login credentials and financial information.
Some of these impersonator sites require credit card information to qualify for the “free subscription,” while others simply require the user to create a new account. Because many people reuse the same username and password for multiple online services, attackers take advantage of this weakness by using the login credentials entered into the spoofed sites to hack into a victim’s other online accounts.
When signing up for any online service, be sure to double-check the legitimacy of the website before entering any personal information. Additionally, remember to use unique passwords for individual online accounts to ensure that if your credentials from one account are exposed, your other accounts will not be at risk. Consider using a password manager for easy-access storage of your unique login credentials.
The U.S. Department of Justice issued a warning about this and other COVID-19 scams earlier this week to ensure that people are informed of potential cyber risks during this unprecedented time. To read more about the various COVID-19 scams currently circulating the web including other suspicious domains, visit https://www.justice.gov/opa/pr/department-justice-announces-disruption-hundreds-online-covid-19-related-scams?utm_campaign=wp_the_cybersecurity_202&utm_medium=email&utm_source=newsletter&wpisrc=nl_cybersecurity202