A new phishing campaign that spoofs Netflix and collects credit card details is targeting both consumers and corporate email users—hoping to capitalize on the thirst for streaming video. The results could be dangerous for businesses and individuals alike.
Uncovered by PhishMe, the gambit begins with a mail purporting to be from the streaming giant, asking for an account update. Once the victim enters their Netflix credentials on a spoofed website, they are redirected to a second screen, which harvests the victim’s credit card credentials. The final step shows a thank-you message, where clicking the “Get Started” button takes visitor to Netflix.com, meaning that they could remain blissfully unaware that they’ve been phished for quite some time.
For more info :
https://www.infosecurity-magazine.com/news/netflix-phish-corporate-dangers/