Indian hackers posing as face Netflix tech support agents are stealing users’ data and identities.
Hackers are getting more and more creative these days. While social engineering is always a preferred method by hackers to steal a customer’s account information, a few hackers based out of India are taking another route.
Internet security firm Malwarebytes discovered that Indian hackers were undertaking a massive phishing scam that is designed to steal data and identities from legitimate Netflix users by routing them to a fake customer service desk. First, a user’s account details are stolen, and right after, they are redirected to a message that indicates that unusual activity has been detected on their Netflix account and that they should contact customer service at a number listed on the page.
The 1-800- number listed on the page leads to a fake Netflix tech support desk, one that is commandeered by Indian hackers. Users are led to download a utility called “NetFlix Support Software”, which is a renamed TeamViewer executable file. The screenshot shows that the manufacturer of the software is still listed as TeamViewer GmbH.
Hackers then remotely connect to a user’s machine using TeamViewer under the pretence that they are looking to fix the issue, but behind the scenes they go through a user’s documents to find anything related to banking or any other identification information that is stored on a user’s machine, these files are then uploaded via TeamViewer to the hacker’s servers.
Jérôme Segura, the engineer at Malwarebytes who identified the scam, mentioned that the hackers were quite insistent on him showing his credit card or other form of identification as a means of authentication. When unable to procure one, the hackers then switched on his webcam remotely and asked him to flash his credentials. When the hackers discovered that there wasn’t a camera connected to the machine, they disconnected.
While this exchange was done in a controlled environment, most users would not realize that their identification information is being targeted. Hackers are now moving away from e-mail scams and are targeting scams that look legitimate to most users. As always, err on the edge of caution and never let anyone remote into your machine that you don’t trust. Also, check Google listings for customer service numbers to ensure you’re calling who you want to. For Netflix, the customer service number is 1-866-579-7172.
Here’s a video highlighting the exchange:
Source: Malwarebytes
Read More: http://ift.tt/NOZDGu
Hackers are getting more and more creative these days. While social engineering is always a preferred method by hackers to steal a customer’s account information, a few hackers based out of India are taking another route.
Internet security firm Malwarebytes discovered that Indian hackers were undertaking a massive phishing scam that is designed to steal data and identities from legitimate Netflix users by routing them to a fake customer service desk. First, a user’s account details are stolen, and right after, they are redirected to a message that indicates that unusual activity has been detected on their Netflix account and that they should contact customer service at a number listed on the page.
The 1-800- number listed on the page leads to a fake Netflix tech support desk, one that is commandeered by Indian hackers. Users are led to download a utility called “NetFlix Support Software”, which is a renamed TeamViewer executable file. The screenshot shows that the manufacturer of the software is still listed as TeamViewer GmbH.
Hackers then remotely connect to a user’s machine using TeamViewer under the pretence that they are looking to fix the issue, but behind the scenes they go through a user’s documents to find anything related to banking or any other identification information that is stored on a user’s machine, these files are then uploaded via TeamViewer to the hacker’s servers.
Jérôme Segura, the engineer at Malwarebytes who identified the scam, mentioned that the hackers were quite insistent on him showing his credit card or other form of identification as a means of authentication. When unable to procure one, the hackers then switched on his webcam remotely and asked him to flash his credentials. When the hackers discovered that there wasn’t a camera connected to the machine, they disconnected.
While this exchange was done in a controlled environment, most users would not realize that their identification information is being targeted. Hackers are now moving away from e-mail scams and are targeting scams that look legitimate to most users. As always, err on the edge of caution and never let anyone remote into your machine that you don’t trust. Also, check Google listings for customer service numbers to ensure you’re calling who you want to. For Netflix, the customer service number is 1-866-579-7172.
Here’s a video highlighting the exchange:
Source: Malwarebytes
Read More: http://ift.tt/NOZDGu
via VRForums | Singapore Technology Lifestyle Forums - News around the web! http://ift.tt/1pYdxFc
No comments:
Post a Comment