Disney Plus Scam — What to Watch Out For

Header

Author: Trend Micro

December 5, 2021

This article is from Trend Micro.

With over 100 million subscribers, it’s no wonder that Disney+ is a prime target for cybercriminals. They employ the same common phishing scam tactics, but with a special Disney twist. Read on to learn how this scam works!

How Disney Plus phishing scams work

Disney Plus phishing scams mostly happen via email. The scammers will send out a massive number of emails to potential victims to try to see if any will take the bait — this is where the term phishing comes from.

One example of a Disney+ phishing scam. Source: Reddit

The emails will appear to come from Disney Plus and they will most often say that there is some kind of problem with the person’s Disney Plus account and that they need to log in to resolve it. Some common lies scammers will use in phishing email scams:

  • You’ve been locked out of your account.
  • There is a problem with your payment details.
  • Somebody has hacked into your account.
  • Your account is going to be deleted.

The above examples are by no means an exhaustive list. The scammers are always coming up with new ways to try to trick people.

Whichever lie they use in their emails the scammers’ goal is always the same: to try to trick you into clicking on the embedded phishing link. There will always be a malicious link included in the scammers’ emails, but instead of taking you to the Disney Plus website, it will take you to a malicious copycat version of the site.

The copycat site will be completely controlled by the scammer. This means that they will be able to access every piece of information you enter on the site. Your email address, password, phone number, credit card information — whatever it is, if you enter it onto the malicious copycat site, it will end up in the scammers’ hands.

The scammers' end goal is to either use your personal information to commit identity theft or sell it on an underground forum or the dark web.

Signs of a Disney Plus phishing scam

The scammers are always getting craftier in their approach, but phishing scams will commonly exhibit some telltale signs.

  • Typos — The scammers are clever, but they are often not the best at spelling. Carefully read the suspicious emails and look out for spelling mistakes.
  • Urgent language — They use words that are intended to scare you into making a rash decision and giving up your personal information.
  • A strange, non-official-looking email address — Obviously the scammers don’t actually work for the companies they pretend to work for, so their email addresses won’t be official ones. And they're often full of lots of random letters and numbers, too.

How to stay safe from Disney Plus scams

If you think you’ve received a suspicious email, it could very well be a phishing scam. By far the best thing to do in this situation, and in any other situation where there is a problem with your Disney Plus account, is to contact their support team directly via theDisney+ Help Center. Don’t trust suspicious, unsolicited emails, and don’t enter your personal details onto dubious-looking websites.

Looking for more examples of phishing scams? (Some of them are super creative!)

If so, check out these posts below:

Airline phishing scams

Bank of America phishing scams

At&T phishing scams

Report a Scam!

Have you fallen for a hoax, bought a fake product? Report the site and warn others!

Help & Info

Popular Stories

As the influence of the internet rises, so does the prevalence of online scams. There are fraudsters making all kinds of claims to trap victims online - from fake investment opportunities to online stores - and the internet allows them to operate from any part of the world with anonymity. The ability to spot online scams is an important skill to have as the virtual world is increasingly becoming a part of every facet of our lives. The below tips will help you identify the signs which can indicate that a website could be a scam. Common Sense: Too Good To Be True When looking for goods online, a great deal can be very enticing. A Gucci bag or a new iPhone for half the price? Who wouldn’t want to grab such a deal? Scammers know this too and try to take advantage of the fact. If an online deal looks too good to be true, think twice and double-check things. The easiest way to do this is to simply check out the same product at competing websites (that you trust). If the difference in prices is huge, it might be better to double-check the rest of the website. Check Out the Social Media Links Social media is a core part of ecommerce businesses these days and consumers often expect online shops to have a social media presence. Scammers know this and often insert logos of social media sites on their websites. Scratching beneath the surface often reveals this fu

So the worst has come to pass - you realise you parted with your money too fast, and the site you used was a scam - what now? Well first of all, don’t despair!! If you think you have been scammed, the first port of call when having an issue is to simply ask for a refund. This is the first and easiest step to determine whether you are dealing with a genuine company or scammers. Sadly, getting your money back from a scammer is not as simple as just asking.  If you are indeed dealing with scammers, the procedure (and chance) of getting your money back varies depending on the payment method you used. PayPal Debit card/Credit card Bank transfer Wire transfer Google Pay Bitcoin PayPal If you used PayPal, you have a strong chance of getting your money back if you were scammed. On their website, you can file a dispute within 180 calendar days of your purchase. Conditions to file a dispute: The simplest situation is that you ordered from an online store and it has not arrived. In this case this is what PayPal states: "If your order never shows up and the seller can't provide proof of shipment or delivery, you'll get a full refund. It's that simple." The scammer has sent you a completely different item. For example, you ordered a PlayStation 4, but instead received only a Playstation controller.  The condition of the item was misrepresented on the product page. This could be the