Phishing scam plagues Netflix
POSTED: Monday, September 30, 2013 - 10:25am
UPDATED: Monday, December 9, 2013 - 9:23am
EL PASO, TX — Better Business Bureau is issuing a warning that Netflix is the latest in a long line of companies to be plagued with a phishing scam using their name.
HOW IT WORKS
A spokesperson from Netflix confirmed the phishing attempt and stated that Netflix has identified the originating website and has executed a shutdown of that site. The scam is not just limited to Netflix customers. It uses the company’s name and logo and most of the emails contain the subject line “Netflix Account Closed.” The bogus email contains links that contain phishing malware that can steal information from your computer.
Phishing is a way of attempting to acquire personal information, such as user names, passwords and credit card details by posing as a trusted entity in an electronic communication (email). Communications claiming to be from popular social websites, auction sites, online payment processors or information technology administrators commonly are used to lure the unsuspecting public. Phishing usually is carried out by email spoofing, and it often directs users to enter details at a fake website that looks identical to the legitimate one.
The Netflix spokesperson stated, “We always tell people ‘Don’t click any links.’ Go directly to the website, sign into their account. If there is a problem with the account, we (Netflix) will typically have a banner at the top of the website that there is a problem with their account.” Consumers also can call the customer service number at 866-716-6812 to speak with a Netflix representative about their account.
Recent similar bogus emails have prompted the BBB to update its advice and recommend the following to anyone who receives these emails:
• Do not open any attachments.
• Do not click on any links.
• Delete the email from your inbox, and delete it again from your trash or recycling folder.
• Run a full system scan using reputable virus software.
BBB also recommends that all domain owners set up a sender policy framework (SPF) and set their spam filter to use it. Using the SPF standard helps fight spam and phishing attacks by allowing your email servers to verify whether an email is legitimate.
Microsoft offers a simple, four-step process for setting up an SPF: www.microsoft.com/mscorp/safety/content/technologies/senderid/wizard.