Netflix's Safety being questioned

NEW DELHI, INDIA: Netflix needs no introduction for entertainment enthusiasts, and it has considerably leveraged faster Internet speeds and mobile technology to become a notable video-distribution network in the world, as industry watchers point out.

But a Trend Micro report discovers that hackers have been targeting the services expanding membership base. According to reports, cybercriminals are stealing user details like passwords and bank credentials via phishing campaigns and a Trojan malware—potentially for sale on the Deep Web. In this scheme, the Netflix user is tricked into clicking on a malicious link found in an email or a website which leads them to fake login page of the service. As soon as the user clicks on the link, the malware harvests account information; the company tells.

Additionally, the cybercriminals behind the scam are selling the stolen Netflix passwords on the Deep Web for as cheap as 25 cents a pop, or a minimum purchase of four accounts for a total of $1, adding that it has 300,000 passwords in stock—notably putting the victims at even greater risk, as a Trend Micro update explains.

It adds: "Moreover, its “terms of service” warn customers not to change any account details as this would alert the real subscriber to unauthorized activity. These stolen Netflix accounts could be perused by any black-market shopper and use the pilfered credentials for just about any paid online service. The sophistication of the scam suggests that these schemes aren’t one-off jobs, but rather part of a proficient business model that potentially feeds the Deep Web economy."

Trend Micro suggests to check the phishing activity strongly. A Netflix user can tell if their account is being used illegitimately when random shows and movies appear in the 'Continue watching' field, and by receiving arbitrary recommendations of what to watch next. It recommends that if your Netflix account is being used without your knowledge, you can check a list of content that has been recently watched via the Netflix website, then click on the downward-facing triangle beside your account found on the top right of the screen. Choose your account, and under your profile choose “Viewing Activity”.

"Click on the “See recent account access” link at the top of the page to view which devices have also been checked in. You will see an option on your Netflix account page to “Sign out of all devices”. Lock outsiders out by changing your password by clicking on “Change your password” under “Membership & Billing”."Trend Micro's suggestion to avoid becoming a victim of Netflix scam adds that to avoid becoming a victim of the Netflix scam in the first place, be careful not to access Netflix content from third-party or unofficial advertisements that promise to offer Netflix for free or at a reduced price, or from social media links and posts. Be sure to access content only through its dedicated Netflix apps or website.