Netflix Suspended Account Scam Active in 23 Countries – How to Stay Safe

Summary:
A widespread phishing campaign is targeting Netflix users, attempting to trick them into revealing their login credentials and credit card information. The scammers use urgency and false promises to lure victims into clicking malicious links. Users are advised to be cautious and verify any messages they receive regarding their Netflix accounts.
#NetflixScam #PhishingAlert #AccountSecurity

Keypoints:

  • Global phishing campaign targeting Netflix users.
  • Scammers aim to steal login credentials and credit card information.
  • Messages create a sense of urgency or offer false rewards to lure victims.
  • Phishing messages are similar across different languages.
  • Netflix does not contact customers via SMS.
  • Users should manually input URLs instead of clicking links in messages.
  • Attackers collect credentials and personal information through fake websites.
  • Stolen data may end up on the dark web for sale.
  • Recommendations include using security solutions and avoiding unknown links.

  • MITRE Techniques

  • Phishing (T1566): Uses deceptive messages to trick users into revealing sensitive information.
  • Credential Dumping (T1003): Collects user credentials from compromised accounts.
  • Account Manipulation (T1098): Exploits user accounts for unauthorized access and data theft.

  • IoC:

  • [url] https://account-details[.]com
  • [url] 78hex4w[.]vitilme[.]info
  • [url] https://renueva-netflix[.]info
  • [url] https://homepage-nflix[.]com


  • Full Research: https://www.bitdefender.com/en-us/blog/hotforsecurity/netflix-scam-stay-safe