Netflix users hit with sophisticated ‘phishing’ scam inviting them to type in bank details on fake login page
Criminals lure in victims with highly convincing email containing dodgy link
NETFLIX users are being scammed into handing over their bank details in a sophisticated 'phishing' trick that may have already netted thousands of pounds.
Criminals have found a way to send notifications to some of the streaming service's account holders asking them to reveal personal information.
It includes a link which takes them to a genuine-looking login page — but it is actually completely fake.
Hoodwinked users are typing in their payment details, date of birth, full name and where they live.
Such private information is gold to cyber-criminals, who not only draw out cash for themselves but even sell the details on to other thieves and con artists.
The scam then redirects them to the real Netflix page, leaving customers believing they have been using the genuine site.
Cyber security firm FireEye picked up on the trick, known as a phishing attack as criminals lure in victims with convincing 'bait'.
Software website Softpedia reported that the scam appears to have been suspended, but users are being warned to remain vigilant.
HACK ATTACK - WHAT YOU CAN DO NOW
Go to HaveIBeenPwnwed and enter your email address to see if your email address is at risk. Check any that you are concerned may have been hacked.
If your account has been compromised then you'll need to change your password on both that site AND anywhere else that has the same password.
Check your bank or credit account immediately. If you see anything unusual then contact your bank and Action Fraud online on 0300 123 2040. Also check your credit file in case anyone's stolen your ID.
"Of course, the easiest way to remain secure is to avoid clicking on links that arrive in your inbox and leading to websites that you don’t trust", the site says.
"Since the emails seem to be coming from Netflix, it might be difficult to determine whether they’re fake or not, but as general recommendation, do not input your information on a website other than Netflix.
"If you think that your account got hacked or in case you entered your personal details on what you believe to be a phishing page, you need to contact Netflix and your bank as soon as possible."
It follows a similar scam where were potential victims were sent an email appearing to be from Apple's iTunes service.
It asked customers to confirm they had made a non-existent Netflix subscription, or they could type in their bank details for a refund.
The convincing email contained accurate logos, symbols and the Apple typeface, tricking some users into thinking that it was genuine.
Do you have a story for The Sun Online news team? Email us at tips@the-sun.co.uk or call 0207 782 4368