Date:22/04/20
The fraudulent websites either steal funds directly via fake subscriptions, or harvest credit card data and login credentials to be used at a later date.
Some of the clones are said to look extremely convincing, although the majority are reportedly characterised by their amateur design and syntax errors.
Between April 6 and 13 alone, cybersecurity firm Mimecast identified roughly 700 websites mimicking Netflix, the world’s most popular streaming service. The firm also discovered four clones of smaller streaming platform Disney+ in the same period.
The appetite for content streaming has skyrocketed in recent weeks as people endeavour to entertain themselves under coronavirus lockdown. As a result, Netflix’s market value has surged to $192 billion, in a period in which the vast majority of businesses have seen their share price fall through the floor.
Although the precise increase in Netflix subscribers is unknown, the company is expected to announce its quarterly earnings on April 21, which should shed light on the extent of its recent success.
According to Carl Wearn, cybercrime lead at Mimecast, the increase in streaming on all manner of platforms is likely to pique the interest of hackers.
“We have seen a dramatic rise in suspicious domains impersonating a variety of streaming giants for nefarious purposes,” he said.
“These spoof websites often lure unsuspecting members of the public in with an offer of free subscriptions to steal valuable data. The data harvested includes names, addresses and other personal information.”
The theft of data of this kind can open the door to a practice known as credential stuffing, whereby cybercriminals use stolen credentials to gain unauthorised access to a host of online services.
For this reason, users are advised to use unique passwords and protect accounts with multi-factor authentication where possible, especially if they suspect they have fallen victim to a fraudulent website.
Users should also check websites for spelling errors and incongruous formatting, and ensure URLs do not contain any irregularities.
Netflix and Disney Plus fakes are stealing personal data - here’s how to stay safe
Researchers have identified more than 700 malicious Netflix and Disney+ clones being used by scammers to scrape victims’ personal data.The fraudulent websites either steal funds directly via fake subscriptions, or harvest credit card data and login credentials to be used at a later date.
Some of the clones are said to look extremely convincing, although the majority are reportedly characterised by their amateur design and syntax errors.
Between April 6 and 13 alone, cybersecurity firm Mimecast identified roughly 700 websites mimicking Netflix, the world’s most popular streaming service. The firm also discovered four clones of smaller streaming platform Disney+ in the same period.
The appetite for content streaming has skyrocketed in recent weeks as people endeavour to entertain themselves under coronavirus lockdown. As a result, Netflix’s market value has surged to $192 billion, in a period in which the vast majority of businesses have seen their share price fall through the floor.
Although the precise increase in Netflix subscribers is unknown, the company is expected to announce its quarterly earnings on April 21, which should shed light on the extent of its recent success.
According to Carl Wearn, cybercrime lead at Mimecast, the increase in streaming on all manner of platforms is likely to pique the interest of hackers.
“We have seen a dramatic rise in suspicious domains impersonating a variety of streaming giants for nefarious purposes,” he said.
“These spoof websites often lure unsuspecting members of the public in with an offer of free subscriptions to steal valuable data. The data harvested includes names, addresses and other personal information.”
The theft of data of this kind can open the door to a practice known as credential stuffing, whereby cybercriminals use stolen credentials to gain unauthorised access to a host of online services.
For this reason, users are advised to use unique passwords and protect accounts with multi-factor authentication where possible, especially if they suspect they have fallen victim to a fraudulent website.
Users should also check websites for spelling errors and incongruous formatting, and ensure URLs do not contain any irregularities.
Views: 355
©ictnews.az. All rights reserved.Similar news
- Azerbaijani project to monitor disease via mobile phones
- Innovative educational system to be improved under presidential decree
- NTRC prolongs license of two TV and radio organizations for 6 years
- Azerbaijan establishes e-registry for medicines
- Azerbaijani museum introduces e-guide
- Nar Mobile opens “Nar Dunyasi” sales and service center in Siyazan city
- International conference on custom electronic services held in Baku
- OIC secretary general to attend COMSTECH meeting in Baku
- Azerbaijan develops earthquake warning system
- New law to regulate transition to digital broadcasting in Azerbaijan
- Azerbaijani State Social Protection Fund introduces electronic digital signature
- Intellectual traffic management system in Baku to be commissioned in December
- Tax Ministry of Azerbaijan started receiving video-addresses
- World Bank recommends Azerbaijan to speed up e-service introduction in real estate
- Azerbaijan to shift to electronic registration of real estate