Disney +: do not reply to this email, it’s a scam!
Phishing campaigns are as popular as ever with hackers and scammers of all kinds. It must be said that these scams are relatively easy to set up and that they can make a lot of money in a very short time. And after the customers of Darty and Fnac, it’s the turn of Disney + subscribers to be targeted by a new phishing campaign, or attempted phishing if you prefer.
With over 100 million subscribers worldwide, it’s clear that Disney + users have become prime targets for crooks of all stripes. In this specific case, we find a well-known operating mode. Via a fake email containing the interface and logo of the streaming platform, hackers try to trick you into passing on your bank details.
If usually, these faked emails can be spotted quickly, especially thanks to an avalanche of spelling mistakes, we must admit that the job has been done rather well on this one. The Disney + header is reproduced to perfection, and all indications are written in impeccable French. To convince you to spin your credit card number without batting an eyelid, the pirates (who pass themselves off as the Disney + technical department) evoke the new European standards RGPD DSP2.
Also read: Facebook Messenger: pay attention to this message, it’s a phishing attempt!
” Due to the new European GDPR DSP2 standards, we are obliged to ask you to update your Disney + information in order to avoid identity theft and bank fraud ”, assure the pirates. Of course, if you don’t pay, you are promised that your Disney + account will be suspended and that fees ranging from ” from € 4.99 to € 49.99 » will be debited from your main payment method.
Of course, this is all bogus and just a matter of putting pressure on the users. Logically, hackers therefore invite you to update your banking information by clicking on a link contained in the email. You are then redirected to a fake Disney + site. There you will find a form to fill out. Form that will obviously allow hackers to retrieve a lot of information about you, such as your Disney + credentials and bank details.
As you will have understood, be careful if you receive an email from Disney + in the days to come. Note that the service will never ask you to source your payment information via a link contained in an email. Also, always take care to verify the sender’s address and compare addresses. If you have previously received official emails from Disney +, you just have to compare the two addresses to realize the trick.
Source: Geeko