It’s very easy to do, I, who have worked in the IT security field for many years, had to look at it myself a few times before I understood it was a scam, says cybersecurity expert David Jacoby for SVT News.
During the day, a number of warnings of emails appearing to be coming from the streaming giant Netflix circulated on social media. The email prompts the user to enter the attached link to update their payment information.
Cybersecurity expert David Jacoby discovered the fraud when he himself received the email Monday night.
– This email was incredibly very phrased.
Jacoby explains that this is a “phishing campaign”, which in short stands for fraud where fraudsters steal card or account information via email or other types of messages, by urging the user to voluntarily disclose them.
In this case, the actor sends emails claiming to come from Netflix and pointing to another website. Jacoby says the website the recipient links to is well programmed and looks very authentic. Clicking on the link itself doesn’t mean the scammers have come across any information – rather, it’s when the recipient fills out their payment details in the form that enables them to find the information.
Jacoby now wants to warn about the scam because he sees a risk that people do not understand that the email is fake.
– In Swedish everything is the correct logo and the same symbols. There was even a “Logout” button. They did it nicely and well, he says and continues:
– It’s very easy to do, I’ve been in the IT security field for many years and had to look at it myself several times before I understood it was a scam.
But there are ways to protect yourself.
The easiest thing is to place your mouse pointer over the link and see where it is pointing. If he doesn’t point to the website he claims to have come from, Jacoby says, it’s a scam.
At the moment, it is not clear how many people have been affected by the fraudulent email. Users who provided their information should contact the police.
Netlix: We never ask for personal information
In an email from a Netflix spokesperson, the company wrote that online fraud “unfortunately happens” and that it is not something unique to Netflix.
“The safety of our members is a top priority and we are constantly working to improve that. The Netflix security team uses many different measures to protect our members, including monitoring various Internet sites that publish stolen usernames and passwords.”
Moreover, the spokesperson wrote that Netflix always informs users of suspicious activity and that they never request personal information via email.