We think we are clever enough to successfully detect and avoid all scams and cons online. But are we that good? Especially when frauds are getting harder to detect with each passing day?

The attack was first identified a few weeks ago when Netflix consumers started receiving emails from an unknown source disguised as “Netflix support”. The email asked the customers to update their personal information as there was an issue verifying their personals details. The email also stated that if the consumer do not take a step, they might cancel the account. And then there was a URL link. Screenshot of the email | Source: Armorblox

Fake Website on a Legit Domain

This particular spam was a notch cleverer as it got through email security controls pretty easily. The hackers put in a functioning CAPTCHA page with a faded Netflix logo which made it look even more realistic and authentic. This became possible for the attackers as they were hosting both the Netflix-lookalike website and the CAPTCHA page on legitimate domains.