There has never been so many people at home at any one time and there has never been so many in demand on-demand video services but these dynamics are increasingly being exploited by cybercriminals says security technology vendor Proofpoint.
In an assessment of the streaming industry — analysing specifically services such as Netflix, Hulu, Disney+ and Apple TV — the security vendor says that the massive shift towards online video has not gone unnoticed by attackers, who it says has found a way to steal consumers’ valid streaming credentials and sell them for extremely discounted prices. Moreover, Proofpoint noted that when this happens, many times the account holders don’t know that they’re sharing their accounts with malicious actors/unauthorised users.
Proofpoint said that there were three principal ways in which attackers steal valid streaming service credentials: malware, credential phishing and using previously stolen credentials combined with password reuse.
Looking at the former, Proofpoint said that certain types of malware are designed to search and steal account information. These keyloggers and ‘information stealers’, among others, have been around for years and are regularly used to steal usernames, passwords, and credit card information. This means if a system or device becomes infected, attackers are able to steal credentials along with other valuable information.
Moreover, the analysis says that attackers have recognised that there is a huge demand for access to streaming content without having to pay full price. It notes that at this point there is a very mature, operationalised market for stolen streaming credentials and that such mechanisms have been set up for all systems, including Disney+ which announced a major European roll out on 24 March.
In a call to action, Proofpoint pointed out in its analysis that most major streaming services have options within their settings to manage devices connected with accounts. To immediately confirm whether unauthorised users were on streaming accounts, it recommended that users log into settings to review recent streaming activity associated with the account. Most of all it called for vigilance from all stakeholders.
Proofpoint said that there were three principal ways in which attackers steal valid streaming service credentials: malware, credential phishing and using previously stolen credentials combined with password reuse.
Looking at the former, Proofpoint said that certain types of malware are designed to search and steal account information. These keyloggers and ‘information stealers’, among others, have been around for years and are regularly used to steal usernames, passwords, and credit card information. This means if a system or device becomes infected, attackers are able to steal credentials along with other valuable information.
Moreover, the analysis says that attackers have recognised that there is a huge demand for access to streaming content without having to pay full price. It notes that at this point there is a very mature, operationalised market for stolen streaming credentials and that such mechanisms have been set up for all systems, including Disney+ which announced a major European roll out on 24 March.
In a call to action, Proofpoint pointed out in its analysis that most major streaming services have options within their settings to manage devices connected with accounts. To immediately confirm whether unauthorised users were on streaming accounts, it recommended that users log into settings to review recent streaming activity associated with the account. Most of all it called for vigilance from all stakeholders.
