Online streaming services are super popular now that millions of Americans have decided to cut the cable cord. Netflix is one of the most used services with nearly 110 million users. That's incredible!
Netflix has so many customers that it's a prime target for cybercriminals.
Even if you're not one of its millions of customers, you need to know about the latest scam that is circulating.
What is the latest Netflix scam?
The latest Netflix scam is yet another phishing attack. Cybercriminals are sending fraudulent emails claiming to be from Netflix.
The message says that the company is having trouble authorizing your credit card and asks you to click on a link within the email to update your payment information. If you don't, you will lose access to Netflix.
Warning, this is a scam!
If you click on the link, you'll be taken to a fake site. There you will be asked to enter your credit card information and once you do, the criminal can access your bank account.
This is similar to other Netflix phishing scams that we've warned you about previously. The image below is an example of the latest attack. Can you spot the problems in the message that tips off it's a scam?
Image: Example of latest Netflix phishing scam.
The first thing that you should notice is how unprofessional the message looks. You can tell it's not an official Netflix email from the spelling error, "expiry date." Phishing attacks are notorious for having grammatical and spelling errors.
Another thing that gives this scam away is the email address the message comes from. It's not from an @Netflix email address, which means it's a fraud.
Image: Example of spoofed Netflix credit card update page.
Netflix is aware that these types of phishing scams occur. To help customers keep their accounts secure, it has posted these suggestions on its site:
- Use a password unique to Netflix and change it periodically
- Be aware of possible phishing attempts
- Keep your computer safe with security software
- Report fraudulent or suspicious activity
- Sign out of unused devices
- Report security flaws to Netflix
Beyond those suggestions from Netflix, it's a good idea to be able to recognize phishing emails. Following these suggestions will help:
Be cautious with links
Do not follow web links in unsolicited email messages, it could be a phishing attack. Cybercriminals always take advantage of popular sites to try and find new victims. That's why you need to be able to recognize a phishing scam.
One thing to watch for with phishing attacks are typos, criminals are typically careless with spelling and grammar. If you receive an email or notification from a reputable company, it should not contain typos. Take our phishing IQ test to see if you can spot a fake email.
Have strong security software
Make sure you're using strong antivirus software on all of your gadgets. And keep them up-to-date for the best protection. This is the best way to keep your device from being infected with malware.
Set up two-factor authentication
Two-factor authentication means that to log in to your account, you need two ways to prove you are who you say you are. This adds an extra layer of security and should be used whenever a site makes it available. Click here to learn how to set up two-factor authentication.
Use unique passwords
Many people use the same password for multiple websites. This is a terrible mistake. If your credentials are stolen from one site and you use the same username and/or password on others, it's easy for the cybercriminal to get into each account. Click here to find out how to create hack-proof passwords.
Note: If you are reading this article using the Komando.com App, click here to see an example of the fraudulent Netflix email.
FROM WEBCAMS, SIGN-INS, TO ALEXA, DON'T MAKE THESE MISTAKES
When our PCs work normally, we sometimes take them for granted. We recklessly fill up our hard drives with data, download files, install applications and browse the web as we please.
But of course, all it takes is one installation of a malicious application to ruin your PC and worse, have all your information stolen.