Netflix ‘Update your payment” phishing scam is bypassing email spam filters

Phishing scams are taking a new turn as more and more people are using streaming services during the COVID-19 pandemic.

The genuine-looking phishing emails are promoting Netflix subscribers to update their payment information for verification of the account, states Forbes. These emails come with Netflix logos and bypass most spam filters making them look authentic emails from the company.

Dear @netflix , the phishing folks are sending me at least 3 emails a day telling me my Netflix account needs updating. Thankfully I can see by clicking on the “from” tab, the account is a scam. I’m not sure you can stop these, but I suggest you let members know. pic.twitter.com/7skYB3T6IW

— kathymarasco🇨🇦 (@kathymarasco) September 10, 2020

The scam email comes with the title “Notice of Verification Failure” and reportedly tricks users into clicking the link of CAPTCHA page. This page also has Netflix logos and branding.

Clicking on the link takes the victims to a Netflix lookalike page where they are required to enter their Netflix login information including billing address and their credit card information. Once the victim enters the payment details, they are redirected back to Netflix. The phishing scam started a few weeks ago.

The scammers used legitimate website domains to send the phishing emails, the reason why most spam filters were thrown off. Also, the website at which the users are directed to belongs to a Texas-based oil and gas company.

In the light of a new phishing scam, Netflix alerted its users to beware of such emails. Also, it suggested the subscribers, to forward the received scam message to phishing@netflix.com before deleting the email.