Netflix recently expanded its reaches to 190 countries in the world – while, there’s a lot to rejoice about this news, there’s a lot to be scared of too. Security software firm Symantec has reported that stolen passwords from Netflix are the catch of the season.
Underground hackers have grabbed this opportunity of global expansion to obtain passwords surreptitiously and sell them off at petty prices in the back markets. The website reported last month that it had more than 75 million subscribers now, a clear indication of the huge numbers such notorious hackers can tap into.
Symantec in its reports has said that cyber criminals are selling the hacked subscriptions for less than 25 cents, with an ad as proof that shows passports of four Netflix accounts being sold at one dollar. With the use of phishing campaigns and fake downloaders, hackers are gaining access to thousands of login details every day.
They do so in two ways – firstly by using phishing campaigns that redirect users to a website resembling Netflix where they are asked to divulge their personal details, login credentials, financial information about bank accounts and payment card details, etc. And this is what is being obtained and sold by notorious hackers.
The other method used is one which involves a malware campaign that creates a fake downloader which makes people believe that they are downloading Netflix using the actual software. Instead by clicking on the make believe downloader they are actually becoming prone to a Trojan virus named Infostealer. Banload, which is capable of getting access to sensitive details and data.
The reports released by Symantec haven’t been able to clarify accurately the number of accounts that have been compromised but ads that they have cited as proofs show vendors keeping a storehouse of about 30,000 thousand passwords. They are also asking buyers not to alter the details in case it triggers an alert to the original user.
Forbes has reported that Brazil and Denmark are the worse ones to be affected. In a malicious campaign launched in Brazil, they were supposed circulation of malware that attacked computer desktops.
In the meantime, Netflix has taken certain steps to make their content more secure like blocking users from using Virtual Private Networks to get access to locally unavailable content. However, on the whole, Netflix seems to be completely oblivious of this appalling scenario, which is duping many users worldwide and will continue to do so, if not stopped.