Think twice before you open an email about your Netflix account. A longtime phishing scam targeting millions of Netflix users has been spreading across the internet this week with startlingly real-looking emails directing customers to update the financial details of their accounts.
The phish is believed to have been farmed out to 110 million customers of the streaming service and "is relatively well designed," according to MailGuard, an email security firm. After safeguarding its own customers from the deceptive email earlier this week, MailGuard wrote: "The scammers are using a template system to generate individualised [sic] messages with specific recipient data."
With the subject line "Your suspension notification," the email informs victims that their accounts have been suspended due to a billing issue. After clicking a link which redirects to a thoroughly believable Netflix landing page, replete with advertisements for The Crown and House of Cards, unwitting customers input their user information and billing details.
If this sounds eerily familiar, it's because this particular phish has been lurking throughout the web since January. When it was first detected, web security firm FireEye concluded the fake site was being hosted on "legitimate, but compromised web servers." Now, MailGuard found that the fake Netflix site is built on "a compromised Wordpress blog." Doing the math, it's easy to see that the scam isn't new. It's basically just found a new home to host a fake website to pilfer people's financial information.