An application was promising to get free Netflix content. Unfortunately, the sweet message (netflix content) turned out to be a lie and the application contains malware.
The application is FlixOnline and is reportedly present on the Google Play Store. When downloaded, the application will listen to conversations on WhatsApp and write an automatic response to incoming messages, quoted by Zdnet, Tuesday (13/4/2021).
When opened, FlixOnline asks permission for Overlay and battery optimization waivers. The request is so that the phone does not turn off the application to save battery.
FixOnline Provides Notifications Via WhatsApp
FlixOnline also asks permission to access notifications connected via WhatsApp. Then it will give it the ability to reply to messages.
The application will send an automatic response to the contacts belonging to the victim. The contents of the message contain the opportunity to get free Netflix for two months wherever the user is.
“2 Months Free Netflix Premium Subscription * Get Free Netflix Premium Subscription anywhere in the world for 60 days. Get it now at https: // bit [.] Ly / 3bDmzUw,” the message read.
It turns out that the link will go on a fake Netflix page that contains malware. The perpetrator will try to get credit card data and credentials of other victims.
Not only that, other scams have the potential for victims to enter phishing sites or even other malware.
Within two months, the Fake Netflix scam can net up to 500 people. Need to be careful because there is a possibility that malware can reappear.
Play Store on Google App has removed Fix Online. Meanwhile WhatsApp has been informed about the vulnerability. However, the messaging platform did not take action because FlixOnline could not be found on WhatsApp.
Read now: How to Prevent Malware from Stealing Data from Fake Google Chrome