"Netflix Phishing Emails Surge 78%"
Security researchers at Egress are warning that corporate accounts could be at risk after noting a 78% increase in email impersonation attacks spoofing the Netflix brand since October. The researcher warned that if employees use the same credentials for personal accounts like Netflix as their work accounts, campaigns like this may imperil corporate systems and data. The researchers stated that the group behind this particular campaign is using Unicode characters to bypass natural language processing (NLP) scanning in traditional anti-phishing filters. Unicode helps to convert international languages within browsers, but it can also be used for visual spoofing by exploiting international language characters to make a fake URL look legitimate. The researchers noted that Unicode is also used in the sender display names, such as "Netflix" and "help desk." However, the threat actors didn't stop there. Other obfuscation techniques include trying to break up the text with non-identifiable characters, white on white text, and using characters from different languages to break the NLP's perception as much as possible. The researchers stated that the campaign appears to be targeting users in the US and UK primarily.