Hackers are targeting Netflix customers in a new wave of cleverly planned and executed phishing scams; it has been reported. According to a post by FireEye, a cyber security firm, hackers are sending emails to Netflix customers, asking them to update their Netflix account details.
And as it is always the case in phishing scams, the emails sent by the hackers contain genuine-looking links that lead to a phoney Netflix page. Once customers are fooled to get to the fake Netflix page, they are prompted to enter their details such as their names, dates of birth and other sensitive pieces of information; it has emerged.
But in what may raise the concern of many, FireEye reports that the hackers use clever techniques to cover their tracks in the new scam.
‘The hackers cleverly hide specific hostnames that are associated with phishing scams in a bid to ensure that their targets do not become suspicious during the process,’ the post explains.
It appears that the hackers are clever enough to use advanced AES encryption in a bid to cover their activities and make them look genuine and harmless. FireEye explains that the purpose of using AES encryption is to ensure that the scam websites cannot be detected using text-based forms of detecting scamming sites.
Also, FireEye reports that the hackers used legitimate servers to host their fake websites.
‘The phishing pages were hosted on genuine servers that had been compromised,’ the firm explains.
By hosting the scam pages on genuine servers, the hackers attempt to convince their would-be victims of the legitimacy of their sites while avoiding possible detection at the same time.
However, this current phishing campaign is unlikely to raise a furore, says FireEye. It shall be remembered that a few months ago, hackers carried out a sophisticated scam in which they used malware to trick Netflix customers into downloading a fake Netflix app in a bid to steal their financial information. By any standards, the current scam is small scale. By the time of going to press, many of the scamming sites had been taken down.