Netflix account takeover using Google Obscure email vulnerability

-



 What is Obscure email vulnerability

Obscure email vulnerability in Gmail is interaction between two different ways of handling e-mail addresses which means shaquibdexter@gmail.com would be same as shaquib.dexter@gmail.com and this is also same as dexters.h.a.q.u.i.b@gmail.com. But in case of netflix they don't ignore the dotted part so all of them are unique email address for netflix and each one can be used for registering a new account. So this difference can be exploited .

The phishing part 

  • Try the Netflix signup form until you get a
    gmail.com address which is already registered by some user, for example you find the victim
    shaquibdexter.

  •   Create a Netflix account with address shaquib.dexter

  •   Sign up for free trial with any card no (that card should be throwaway card).

  •   When Netflix applies the active card check, cancel the
    card.

  • Wait for Netflix to bill the cancelled card. Then Netflix
    will emails shaquib.dexter asking for a valid card.

  •   Hope that dexter will read that email to dexter.weesely, thinking it's for
    his Netflix account backed by shaquibdexter, then enters hiscard **4567.

  • Change the email for the Netflix account to new@gmail.com,
    kicking shaquibdexter's access to this account.

  •   Use Netflix free forever with his card **** 4567!

Comments

Post a Comment

Popular posts from this blog

USB forensic : Find the history of every connected USB device on your computer

-
Image
Sometime we need to know what USB devices were connected to our computer in our absence.These information could be very useful for forensic examiner or in general case also where we just want to know what USB devices were used . How do this works We all know about registry on windows, a registry is a database in windows which stores settings of the operating system, hardware devices, software programs and user preferences settings. Whenever we insert a USB drive in a computers a registry key with name "USBSTOR" is created this registry key store information about that USB device and whatever info the OS need to know can be found in this registry key.  Finding the all attached USB history To find the usb  history of your device just do the following step below  STEP 1  Go to run and type "regedit".  STEP 2: In the registry go to  HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\USBSTOR and there you will find a registry ke...
Read more

Windows Incident Response: Detect and delete backdoor malware in windows

-
Image
In this post we are going to learn how to detect and remove a backdoor malware which is listening through some TCP connection and later we will learn to detect and delete that malware which is listening through a periodic connection from its C2 domain. For this i am going to use a non-malicious program name "504lab" created by SANS institute it will create a backdoor on my system and my task is to find it and delete it from my system. I will attach link below so that you can practice it yourself. Before doing this we need to make sure our firewall is completely off so first we will stop our firewall, to do this go to your command prompt and type " netsh advfirewall set allprofiles state off "   Now go to directory where the program is located and start it through cmd prompt After executing, it will ask us to start another command prompt and execute netstat -aon command so that we can see what service are running on our network so start ano...
Read more

Crawling pastebin to find specific pastedump

-
Image
In this post we will crawl into pastebin.com to find specific pastebin dump. For example if we want to find paste for specific keyword like "password" we can get all the paste containing that keyword. Preparing the Attack Usually some sites don't allow web crawling and by doing so you may get banned from accessing that site, which will also make this method vain.  So before doing this i recommend you to use THIS tool to anonymize all your traffic so that if we get banned we can switch our IP address immediately.  Start the Attack STEP 1 Clone into this URL by typing https://github.com/kahunalu/pwnbin.git STEP 2 Now type python pwnbin.py -k pass -n 10 -m 10 here "-k" is the keyword you want to search for "-n" is the number of paste you want to crawl and "-m" number of keywords matches you want.  As we can see above we have found a match and it's now saved to log.txt file so it's time to see the dump co...
Read more