Researchers warned about a newly discovered ransomware with the aim to steal Netflix user credentials. The ransomware is being distributed via a Netflix login generator and is targeting Windows 7 and Windows 10 computers and terminates itself if it runs on a different platform variant.
Netflix has 93 million subscribers in more than 190 countries but many people are unwilling to pay the monthly subscription fee. They'll try to bypass the cost and watch content for free thus cybercriminals are taking advantage of them. The scam starts when a Windows/PC user downloads what they believe is a Netflix login generator that allow users to view Netflix content for free in violation of the service’s terms and conditions. This login generator is fake. It’s a disguise for a ransomware called RANSOM_NETIX.A.
Once the victim clicks on the “Generate Login” button, the ransomware is installed and all files are encrypted. The ransomware uses fake login prompts as a distraction while it encrypts 39 file types under the C:\Users directory.Once it’s done, the program demands $100 in Bitcoin from victims.
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street