A large number of fake “Netflix” bills in circulation

Invoices showing a payment to the Netflix service have been circulating for several days. We ask you to be careful as these invoices are counterfeit!

We therefore advise deleting these invoices immediately. This invoice or payment confirmation is a widely used method that is used to obtain access data, as well as personal and bank details.

Important note: The companies mentioned (Netflix and PayPal) have nothing to do with the scam . You yourself have become a victim here, with your name being misused to lure users into a trap!

A common pattern of this method is that there is supposedly a payment made to a well-known service or merchant. In this case, the invoice claims that there was a payment to “Netflix”, which can be stopped using the link in the email. Names are always played with; the more well-known the company mentioned is, the more likely the recipients of the email are to consider the purchase to be unauthorized.

The salutation in this email reads in barrier-free plain text:

Transaction code: 3BF00CE1A9B9C8

Good day, !
You have sent a payment for €99.99 EUR to Netflix.com.

DealerNetflix.com

This method already exists with countless companies named as alleged payment recipients. The individual names appear in waves, but the structure is always identical.

Phishing!

At the end of these fake emails there is always a website that is similar to the PayPal login and encourages you to log in to this site. At the beginning there is always a request for login data as a supposed login, then fake form fields appear which request personal data and at the end ask you to enter bank or credit card details.

The addresses of these phishing websites are usually somehow adapted to the name “PayPal”, so that inexperienced users run the risk of thinking they are safe. Furthermore, fraudsters have recently begun to work with certificates and secured connections (HTTPS) to create false authenticity. We warn against providing truthful information on these pages, as this will end up in the hands of fraudsters.

General phishing warning:

• Phishing emails generally try to appear as if they come from the relevant company . Fraudsters use these to try to get personal data, preferably bank credit cards or other payment data.
• Protection software is helpful! With updated databases and appropriate heuristics, malicious sites are often blocked. We use Kaspersky protection software .
• The real “art” of these emails is the story with which the recipient is supposed to trust the email and open the inserted link. Expression, grammar and spelling, as well as plausibility and individuality play a very important role here. Especially in the recent past, there have been an increasing number of emails that shined with individuality: they could address the recipient with the correct name and also provide actual address and personal data.
• However, you can generally note: Banks, payment and purchase portals never ask you to log in to the account using a built-in link! In addition, although a generic salutation is always an indication of phishing, an existing correct salutation is not proof of the authenticity of an email .
• Tip on your smartphone: press and hold a link until a dialog window opens with the link preview. This shows where an embedded link should lead.
• Never log in via a link that is sent by email, but always type the relevant page by hand into the address bar of your browser and log in there. If there are actually announcements for the relevant service, they will be displayed there. In addition, if possible, you should also refrain from conducting banking transactions via public/third-party Wi-Fi networks , as you never know exactly whether (and in an emergency, by whom) these networks are being logged.
• Never enter real data in the form fields! Under certain circumstances, the data can even while typing without having to confirm with “continue”.