Saturday, December 2, 2023

WhatsApp scam – Advertising Netflix Subscription free for a year

[jpshare]These days it winds up plainly normal as we see a huge increase with Scam message in Whatsapp, here is another WhatsApp scam – Advertising Netflix Subscription free for a year.

For this new Whatsapp trick, fraudsters are utilizing this outstanding TV mark as the trap to spread the attack.

Initial Scam Message

If you have received the message even from a reliable contact don’t click or don’t share the link.

The message has all the earmarks of being from Netflix, however, have close look it demonstrates a shortened URL which takes clients to different sites not identified as Netflix.

Also, the image appears in different languages Spanish, English, and Portuguese.

WhatsApp scam - Advertising Netflix Subscription
Spanish
WhatsApp scam - Advertising Netflix Subscription
English
WhatsApp scam - Advertising Netflix Subscription
Portuguese

Multilingual Fake page

User’s on clicking the link will take to the page that not belongs to Netflix as like the malicious URL the multilingual.

Another inquisitive truth is that the page has the ability to recognize the language of the device and can change its language consequently.

This malicious page guarantees that if the request was sent to 10 individuals then Netflix service will be accessible free for a year.

The victim is redirected to pages that falsely claim that they are on the “last stride” to accomplish enactment when is truly happening that they are taking information from clients according to ESET blog post.

Mitigations

  • If you already shared with anyone, ESET advising users to contact them and let them know about the incident.
  • Did you provide your telephone number? Check wit your service provider that you are not added to any premium service.
  • If any application downloaded from the URL, uninstall them immediately.

Also Read

Website

Latest articles

Active Attacks Targeting Google Chrome & ownCloud Flaws: CISA Warns

The CISA announced two known exploited vulnerabilities active attacks targeting Google Chrome & own...

Cactus Ransomware Exploiting Qlik Sense code execution Vulnerability

A new Cactus Ransomware was exploited in the code execution vulnerability to Qlik Sense...

Hackers Bypass Antivirus with ScrubCrypt Tool to Install RedLine Malware

The ScrubCrypt obfuscation tool has been discovered to be utilized in attacks to disseminate the RedLine Stealer...

Hotel’s Booking.com Hacked Logins Let Attacker Steal Guest Credit Cards

According to a recent report by Secureworks, a well-planned and advanced phishing attack was...

Critical Zoom Vulnerability Let Attackers Take Over Meetings

Zoom, the most widely used video conferencing platform has been discovered with a critical...

Hackers Using Weaponized Invoice to Deliver LUMMA Malware

Hackers use weaponized invoices to exploit trust in financial transactions, embedding malware or malicious...

US-Seized Crypto Currency Mixer Used by North Korean Lazarus Hackers

The U.S. Treasury Department sanctioned the famous cryptocurrency mixer Sinbad after it was claimed...

API Attack Simulation Webinar

Live API Attack Simulation

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked.The session will cover:an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

Related Articles