Symantec said these are fueling an “underground economy targeting users who wish to access Netflix for free or a reduced price”.
Hackers are phishing for log-in credentials, as Netflix allows four people to access one account, and then selling these as cheap pirate Netflix accounts.
Other cyber criminals are creating false Netflix pages that contain malware and can be used to access legitimate subscribers’ financial information.
The problem has been exacerbated by Netflix’s massive global rollout, which saw it simultaneously hit 130 new international territories earlier this year.
“This success has attracted the attention of attackers,” Symantec said. “We have observed malware and phishing campaigns targeting Netflix users’ information. The details are then added to a growing black market that claims to provide cheaper access to the service.”
Symantec revealed its findings in an official blog post from one of its threat intelligence officers, Lionel Payet.
“Both malware and phishing campaigns help attackers gather the credentials needed to break into victims’ Netflix accounts,” Payet blogged.
“But the attackers may not just keep this access for themselves. There is an underground economy targeting users who wish to access Netflix for free or a reduced price. The products could even allow customers to open their own illegal store.”