Hackers selling stolen Netflix passwords only for $0.25 on the black market
Security software firm Symantec reports that there is a growing demand for stolen Netflix passwords following Netflix’s international expansion to a total of 190 regions around the world.
However, the expanding membership base of Netflix has created more opportunities for underground hackers who are illegally selling passwords on Netflix black markets on the burrows of dark web.
Symantec reports that many cyber criminals are selling the hacked Netflix subscriptions on the deep web for less than 25 cents. The ad lifted from the deep web by Symantec shows a passport vendor offering minimum purchase of four Netflix accounts for as low as $1. In other words, some people are willing to pay a lot less even if it means breaking the law.
Hackers are stealing thousands of login credentials on a daily basis through multiple phishing campaigns, according to Symantec. Redirecting users to fake Netflix websites, the cybercriminals trick users into providing their login credentials, personal information, payment card details, and consequently (re)sell this information on black market forums for as low as 25 cents a password . These stolen accounts provide a month of viewing or access to the premium service.
While Symantec’s report doesn’t accurately clarify how many accounts might be compromised, it does show an ad lifted from a popular black market vendor that claims to have “300,000 [passwords] in stock.” Its “terms of service” instruct customers not to change any account details, as this would visibly alert the original subscriber about the suspicious invasion of his/her account. The vendors also warn that “no accounts will be further sold” to buyers who fail to comply with these terms.
If the buyer from Netflix black market leaves the information unedited, the original subscriber can still notice someone tampering with the account via the “recently watched” list.
Another offering in the black market includes Netflix account generators with regular updates of the database of the stolen accounts. Symantec advises users to be cautious of the malicious software and download Netflix application from official sources only. Additionally, users should not take advantage of services that appear to offer Netflix for free or a reduced price, as they may contain malicious files or steal data.
In the meantime, Netflix has already started blocking users from using virtual private networks (VPN) to get access to content that is not locally available.
Forbes reports that Brazil and Denmark are the countries under red alert. Netflix in Brazil suffered a virulent malware campaign, in which malicious files were faking themselves as Netflix software appeared on the attacked computer desktops. The person clicking these fake Netflix links would be redirected to a Netflix home page, which is a trap as the computer downloads the Trojan file called Infostealer.
Netflix, completely unaware of these disguised files, assumes that files are downloaded by users who have been lured into fake ads or unreal Netflix subscription offers.
The video-streaming service last month reported it now has more than 75 million subscribers, adding 5.59 million users during the last three months of 2015, which is clearly an indication that there is a huge potential for the black market in stolen Netflix passwords to expand and go on operating.