I’m sharing some information here wondering if anyone can identify the criminal affiliate program at the root of this scam service.
The scam begins with what seems to be an automated bot-response posted on Facebook. One of the outstanding questions — can anyone identify a bot that is making these spammy posts? These are a few examples from many thousands observed over the past week.
Step One: Unknown malware uses stolen Facebook credentials to post a spammy comment link.
We’ll just do one walk through here, but each of these functions in the same way. The spam post, which often will be added as a comment to a publicly shared post that mentions a movie, links to a Facebook page. Let’s walk through the Ogbani Wanyu post first.
Step Two: The Spam link points to a Facebook page created to share a shortened URL.
Recently popular movies have Facebook pages created that claim to offer the ability to watch full movies and share a shortened URL, usually bit.ly links, but we’ve also seen Goo.gl links.
Step Three: A shortened URL redirects to a Blogspot page (sometimes other types of pages)
Step Four: A Blogspot page hosts a movie streaming service affiliate page
Step Five: Try to stream a Movie … redirects to the streaming service and credits the affiliate
Step Six: Register your “Free Account”
Step Seven: Provide your Credit Card for the Free Service!
Step Eight: Get Billed $39.95 per month
The Ask: Do you know more about this scam?
Other Gaming, Movie, Book, websites offering the same scammy terms of service:
A Small Sampling of Blogs related to this scam:
*** This is a Security Bloggers Network syndicated blog from CyberCrime & Doing Time authored by Gary Warner, UAB. Read the original post at: http://garwarner.blogspot.com/2018/05/affiliate-movie-streaming-scam-service.html