{"id":225776,"date":"2026-01-23T05:00:36","date_gmt":"2026-01-23T13:00:36","guid":{"rendered":"https:\/\/www.mcafee.com\/blogs\/?p=225776"},"modified":"2026-02-05T10:06:21","modified_gmt":"2026-02-05T18:06:21","slug":"this-week-in-scams-netflix-phishing-and-qr-code-espionage","status":"publish","type":"post","link":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/","title":{"rendered":"This Week in Scams: Netflix Phishing and QR Code Espionage"},"content":{"rendered":"<p><span data-contrast=\"auto\">This week in\u00a0scams, attackers are leaning hard on\u00a0<\/span><b><span data-contrast=\"auto\">familiar brands, everyday tools, and routine\u00a0behavior<\/span><\/b><span data-contrast=\"auto\">\u00a0to trigger fast, unthinking reactions. From fake Netflix billing alerts to malicious browser extensions and QR code phishing tied to foreign espionage, the common thread is trust being weaponized at exactly the right moment.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Every week, this roundup breaks down the\u00a0scam\u00a0and cybersecurity stories making news and explains how they\u00a0actually work, so readers can better recognize risk and avoid being manipulated.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Let\u2019s\u00a0get into it.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"3\"><b><span data-contrast=\"none\">Netflix Billing Emails Are Back&#8230; And Still Catching People Off Guard<\/span><\/b><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:281,&quot;335559739&quot;:281}\">\u00a0<\/span><\/h2>\n<p><b><span data-contrast=\"auto\">The big picture:<\/span><\/b> <span data-contrast=\"auto\">Subscription phishing is resurging, with scammers impersonating\u00a0<\/span><b><span data-contrast=\"auto\">Netflix<\/span><\/b><span data-contrast=\"auto\">\u00a0and using fake billing failures to push victims into handing over payment details.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">What happened:<\/span><\/b> <span data-contrast=\"auto\">Multiple Netflix impersonation emails circulated again this month, warning recipients that a payment failed and urging them to \u201cupdate payment\u201d to avoid service interruption. The messages closely mirror Netflix\u2019s real branding and include polished formatting, official-looking language, and even PDF attachments designed to feel like legitimate billing notices.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">What makes these\u00a0scams\u00a0effective is timing. Victims often receive them while actively reviewing subscriptions, updating payment methods, or considering\u00a0canceling\u00a0services. That context lowers\u00a0skepticism\u00a0just enough for a quick click before slowing down to verify.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">McAfee\u2019s Scam Detector flagged the messages\u00a0(which one of our own employees received this week)\u00a0as phishing, confirming they were designed to steal payment information rather than resolve a real billing issue.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-225777\" src=\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/netflix-email-scamdetector-scan.png\" alt=\"Example of McAfee detecting the Netflix phishing scam\" width=\"462\" height=\"1000\" srcset=\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/netflix-email-scamdetector-scan.png 462w, https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/netflix-email-scamdetector-scan-139x300.png 139w, https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/netflix-email-scamdetector-scan-60x129.png 60w\" sizes=\"auto, (max-width: 462px) 100vw, 462px\" \/><\/p>\n<p><b><span data-contrast=\"auto\">Red flags to watch for:<\/span><\/b><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<ul>\n<li><span data-contrast=\"auto\">Unexpected billing problems paired with urgent calls to act<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Payment requests delivered by email instead of inside the app<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Attachments or buttons asking you to \u201cfix\u201d account issues<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Sender addresses that\u00a0don\u2019t\u00a0match official Netflix domains<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">How this\u00a0scam\u00a0works:<\/span><\/b> <span data-contrast=\"auto\">This is classic brand impersonation phishing. Scammers\u00a0don\u2019t\u00a0need to hack Netflix itself. They rely on people recognizing the logo, trusting the message, and reacting emotionally to the idea of losing access. The attachment and clean design help bypass instinctive spam filters in the brain, even when technical filters catch it later.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p>Netflix has warned customers about these scams and offers advice on its site if you encounter one.<\/p>\n<p><b><span data-contrast=\"auto\">What to do instead:<\/span><\/b>\u00a0If you get a billing alert,<b><span data-contrast=\"auto\">\u00a0don\u2019t\u00a0click.\u00a0<\/span><\/b><span data-contrast=\"auto\">Open the Netflix app or manually type the site address to check your account. If\u00a0there\u2019s\u00a0no issue there, the email\u00a0wasn\u2019t\u00a0real.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"3\"><b><span data-contrast=\"none\">Fake Ad Blocker Crashes Browsers to Push \u201cFix It\u201d Malware<\/span><\/b><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:281,&quot;335559739&quot;:281}\">\u00a0<\/span><\/h2>\n<p><b><span data-contrast=\"auto\">The big picture: <\/span><\/b><span data-contrast=\"auto\">Attackers are exploiting browser crashes themselves as a social engineering tool, turning technical disruption into a pathway for malware installation.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">What happened: <\/span><\/b><span data-contrast=\"auto\">Researchers reported a malvertising campaign promoting a fake ad-blocking browser extension called \u201cNexShield,\u201d which falsely claimed to be created by the developer of a well-known, legitimate ad blocker. Once installed, the extension intentionally overwhelmed the browser, causing freezes, crashes, and system instability.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">After restart, victims were shown fake security warnings instructing them to \u201cfix\u201d the problem by running commands on their own computer. Following those instructions triggered the download of a remote access tool capable of spying, executing commands, and installing additional malware. The reporting was first detailed by\u00a0<\/span><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/fake-ad-blocker-extension-crashes-the-browser-for-clickfix-attacks\/\" target=\"_blank\" rel=\"noopener\">Bleeping Computer<\/a><span data-contrast=\"auto\">, with technical analysis from security researchers.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">Red flags to watch for:<\/span><\/b><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<ul>\n<li><span data-contrast=\"auto\">Browser extensions promising performance boosts or \u201cultimate\u201d protection<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Crashes\u00a0immediately\u00a0after installing a new extension<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Pop-ups instructing you to run commands manually<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">\u201cSecurity fixes\u201d that require copying and pasting code<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">How this scam works: <\/span><\/b><span data-contrast=\"auto\">This is a variant of\u00a0ClickFix\u00a0attacks. Instead of faking a problem, attackers cause a real one, then position themselves as the solution. The crash creates urgency and confusion, making people more likely to follow instructions\u00a0they\u2019d\u00a0normally question. It turns frustration into compliance.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"3\"><b><span data-contrast=\"none\">FBI Warns QR Code Phishing Is Being Used for Cyber Espionage<\/span><\/b><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:281,&quot;335559739&quot;:281}\">\u00a0<\/span><\/h2>\n<p><b><span data-contrast=\"auto\">The big picture:<\/span><\/b> <span data-contrast=\"auto\">QR codes are being used as stealth phishing tools, with highly targeted attacks tied to foreign intelligence operations.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">What happened:<\/span><\/b> <span data-contrast=\"auto\">The\u00a0<\/span><b><span data-contrast=\"auto\">Federal Bureau of Investigation<\/span><\/b><span data-contrast=\"auto\">\u00a0issued a warning about QR code phishing, or \u201cquishing,\u201d campaigns linked to a North Korean government-backed hacking group. According to\u00a0<\/span><a href=\"https:\/\/www.foxnews.com\/tech\/fbi-warns-qr-code-phishing-used-north-korean-cyber-spying\" target=\"_blank\" rel=\"noopener\">reporting by\u00a0Fox News<span data-contrast=\"none\">,<\/span><\/a><span data-contrast=\"auto\">\u00a0attackers sent emails\u00a0containing\u00a0QR codes that redirected victims to fake login pages or malware-hosting sites.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">In some cases, simply visiting the site allowed attackers to collect device data, location details, and system information, even if no credentials were entered. These campaigns are highly targeted, often aimed at professionals in policy, research, and technology sectors.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><b><span data-contrast=\"auto\">Red flags to watch for:<\/span><\/b><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<ul>\n<li><span data-contrast=\"auto\">QR codes sent by email or messaging apps<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">QR codes leading to login pages for work tools or cloud services<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Messages that feel personalized but unexpected<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">Requests to scan instead of\u00a0click<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">How this scam works: <\/span><\/b><span data-contrast=\"auto\">QR codes hide the destination URL, removing the visual cues people rely on to judge safety. Because scanning feels faster and more \u201cpassive\u201d than clicking a link, people often skip verification entirely. That moment of trust is what attackers exploit.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<p><a href=\"https:\/\/www.mcafee.com\/blogs\/tips-tricks\/what-is-quishing-how-qr-code-scams-work-and-how-to-avoid-them\/\" target=\"_blank\" rel=\"noopener\"><span data-contrast=\"none\">Read our ultimate guide to \u201cquishing\u201d and how to spot and avoid QR code\u00a0scams\u00a0here.<\/span><\/a><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"3\"><b><span data-contrast=\"none\">McAfee\u2019s Safety Tips for This Week<\/span><\/b><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:281,&quot;335559739&quot;:281}\">\u00a0<\/span><\/h2>\n<ul>\n<li><b><span data-contrast=\"auto\">Verify inside official apps.<\/span><\/b><span data-contrast=\"auto\">\u00a0Billing or security issues should be confirmed directly in the app or website you normally use, not through email links or QR codes.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><b><span data-contrast=\"auto\">Treat extensions like software installs.<\/span><\/b><span data-contrast=\"auto\">\u00a0Only install browser extensions from trusted publishers you already\u00a0know, and\u00a0remove anything that causes instability.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><b><span data-contrast=\"auto\">Slow down with QR codes.<\/span><\/b><span data-contrast=\"auto\">\u00a0If a QR code leads to a login page or download, close it and navigate manually instead.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<li><b><span data-contrast=\"auto\">Watch for urgency + familiarity.<\/span><\/b><span data-contrast=\"auto\">\u00a0Scammers increasingly rely on brands, tools, and\u00a0behaviors\u00a0you already trust to short-circuit caution.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><span data-contrast=\"auto\">McAfee will be back next week with another roundup of the\u00a0scams\u00a0making headlines and the practical steps you can take to stay safer online.<\/span><span data-ccp-props=\"{&quot;134233117&quot;:false,&quot;134233118&quot;:false,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This week in\u00a0scams, attackers are leaning hard on\u00a0familiar brands, everyday tools, and routine\u00a0behavior\u00a0to trigger fast, unthinking reactions. From fake Netflix&#8230;<\/p>\n","protected":false},"author":1440,"featured_media":225809,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[10667,10661,1838],"tags":[],"coauthors":[16632],"class_list":["post-225776","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security-news","category-internet-security","category-mobile-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v25.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>This Week in Scams: Netflix Phishing and QR Code Espionage | McAfee Blog<\/title>\n<meta name=\"description\" content=\"This week in\u00a0scams, attackers are leaning hard on\u00a0familiar brands, everyday tools, and routine\u00a0behavior\u00a0to trigger fast, unthinking reactions. From fake\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"This Week in Scams: Netflix Phishing and QR Code Espionage | McAfee Blog\" \/>\n<meta property=\"og:description\" content=\"This week in\u00a0scams, attackers are leaning hard on\u00a0familiar brands, everyday tools, and routine\u00a0behavior\u00a0to trigger fast, unthinking reactions. From fake\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/\" \/>\n<meta property=\"og:site_name\" content=\"McAfee Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/McAfee\/\" \/>\n<meta property=\"article:published_time\" content=\"2026-01-23T13:00:36+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-02-05T18:06:21+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"300\" \/>\n\t<meta property=\"og:image:height\" content=\"200\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Brooke Seipel\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@McAfee\" \/>\n<meta name=\"twitter:site\" content=\"@McAfee\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Brooke Seipel\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/\"},\"author\":{\"name\":\"Brooke Seipel\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729\"},\"headline\":\"This Week in Scams: Netflix Phishing and QR Code Espionage\",\"datePublished\":\"2026-01-23T13:00:36+00:00\",\"dateModified\":\"2026-02-05T18:06:21+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/\"},\"wordCount\":955,\"publisher\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg\",\"articleSection\":[\"Security News\",\"Internet Security\",\"Mobile Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/\",\"name\":\"This Week in Scams: Netflix Phishing and QR Code Espionage | McAfee Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg\",\"datePublished\":\"2026-01-23T13:00:36+00:00\",\"dateModified\":\"2026-02-05T18:06:21+00:00\",\"description\":\"This week in\u00a0scams, attackers are leaning hard on\u00a0familiar brands, everyday tools, and routine\u00a0behavior\u00a0to trigger fast, unthinking reactions. From fake\",\"breadcrumb\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg\",\"contentUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg\",\"width\":300,\"height\":200,\"caption\":\"Couple watching Netflix\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog\",\"item\":\"https:\/\/www.mcafee.com\/blogs\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Internet Security\",\"item\":\"https:\/\/www.mcafee.com\/blogs\/internet-security\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"This Week in Scams: Netflix Phishing and QR Code Espionage\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#website\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/\",\"name\":\"McAfee Blog\",\"description\":\"Internet Security News\",\"publisher\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.mcafee.com\/blogs\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#organization\",\"name\":\"McAfee\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png\",\"contentUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png\",\"width\":1286,\"height\":336,\"caption\":\"McAfee\"},\"image\":{\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/McAfee\/\",\"https:\/\/x.com\/McAfee\",\"https:\/\/www.linkedin.com\/company\/mcafee\/\",\"https:\/\/www.youtube.com\/McAfee\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729\",\"name\":\"Brooke Seipel\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/image\/ac03c1083bbdcd2cbb0675dc29c62cbe\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg\",\"contentUrl\":\"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg\",\"caption\":\"Brooke Seipel\"},\"description\":\"Brooke Seipel is the Content Editor in Chief at McAfee, where she leads the company's content strategy with a focus on cybersecurity education. With a decade of experience in audience development and digital content, Brooke has a strong understanding of online audiences, emerging trends, and the evolving cyber landscape. Before joining McAfee, Brooke led audience teams and served as both a reporter and editor at numerous award-winning publications including Fortune, The Hill, International Business Times, New Republic, and The OC Register. Brooke is dedicated to providing insightful, actionable content that empowers readers to make informed decisions about their digital safety. When she's not immersed in the world of cybersecurity, you can find her scrolling social media endlessly, soaking up the latest trends, and also volunteering as a naturalist.\",\"url\":\"https:\/\/www.mcafee.com\/blogs\/author\/brooke-seipel\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"This Week in Scams: Netflix Phishing and QR Code Espionage | McAfee Blog","description":"This week in\u00a0scams, attackers are leaning hard on\u00a0familiar brands, everyday tools, and routine\u00a0behavior\u00a0to trigger fast, unthinking reactions. From fake","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"og_locale":"en_US","og_type":"article","og_title":"This Week in Scams: Netflix Phishing and QR Code Espionage | McAfee Blog","og_description":"This week in\u00a0scams, attackers are leaning hard on\u00a0familiar brands, everyday tools, and routine\u00a0behavior\u00a0to trigger fast, unthinking reactions. From fake","og_url":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/","og_site_name":"McAfee Blog","article_publisher":"https:\/\/www.facebook.com\/McAfee\/","article_published_time":"2026-01-23T13:00:36+00:00","article_modified_time":"2026-02-05T18:06:21+00:00","og_image":[{"width":300,"height":200,"url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg","type":"image\/jpeg"}],"author":"Brooke Seipel","twitter_card":"summary_large_image","twitter_creator":"@McAfee","twitter_site":"@McAfee","twitter_misc":{"Written by":"Brooke Seipel","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#article","isPartOf":{"@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/"},"author":{"name":"Brooke Seipel","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729"},"headline":"This Week in Scams: Netflix Phishing and QR Code Espionage","datePublished":"2026-01-23T13:00:36+00:00","dateModified":"2026-02-05T18:06:21+00:00","mainEntityOfPage":{"@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/"},"wordCount":955,"publisher":{"@id":"https:\/\/www.mcafee.com\/blogs\/#organization"},"image":{"@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage"},"thumbnailUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg","articleSection":["Security News","Internet Security","Mobile Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/","url":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/","name":"This Week in Scams: Netflix Phishing and QR Code Espionage | McAfee Blog","isPartOf":{"@id":"https:\/\/www.mcafee.com\/blogs\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage"},"image":{"@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage"},"thumbnailUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg","datePublished":"2026-01-23T13:00:36+00:00","dateModified":"2026-02-05T18:06:21+00:00","description":"This week in\u00a0scams, attackers are leaning hard on\u00a0familiar brands, everyday tools, and routine\u00a0behavior\u00a0to trigger fast, unthinking reactions. From fake","breadcrumb":{"@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#primaryimage","url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg","contentUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2026\/01\/Thumbnail.jpg-.jpeg","width":300,"height":200,"caption":"Couple watching Netflix"},{"@type":"BreadcrumbList","@id":"https:\/\/www.mcafee.com\/blogs\/internet-security\/this-week-in-scams-netflix-phishing-and-qr-code-espionage\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https:\/\/www.mcafee.com\/blogs\/"},{"@type":"ListItem","position":2,"name":"Internet Security","item":"https:\/\/www.mcafee.com\/blogs\/internet-security\/"},{"@type":"ListItem","position":3,"name":"This Week in Scams: Netflix Phishing and QR Code Espionage"}]},{"@type":"WebSite","@id":"https:\/\/www.mcafee.com\/blogs\/#website","url":"https:\/\/www.mcafee.com\/blogs\/","name":"McAfee Blog","description":"Internet Security News","publisher":{"@id":"https:\/\/www.mcafee.com\/blogs\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.mcafee.com\/blogs\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.mcafee.com\/blogs\/#organization","name":"McAfee","url":"https:\/\/www.mcafee.com\/blogs\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/","url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png","contentUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2023\/02\/mcafee-logo.png","width":1286,"height":336,"caption":"McAfee"},"image":{"@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/McAfee\/","https:\/\/x.com\/McAfee","https:\/\/www.linkedin.com\/company\/mcafee\/","https:\/\/www.youtube.com\/McAfee"]},{"@type":"Person","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/e0177129df164a74082f47397af3e729","name":"Brooke Seipel","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.mcafee.com\/blogs\/#\/schema\/person\/image\/ac03c1083bbdcd2cbb0675dc29c62cbe","url":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg","contentUrl":"https:\/\/www.mcafee.com\/blogs\/wp-content\/uploads\/2025\/01\/1693283531327-96x96.jpg","caption":"Brooke Seipel"},"description":"Brooke Seipel is the Content Editor in Chief at McAfee, where she leads the company's content strategy with a focus on cybersecurity education. With a decade of experience in audience development and digital content, Brooke has a strong understanding of online audiences, emerging trends, and the evolving cyber landscape. Before joining McAfee, Brooke led audience teams and served as both a reporter and editor at numerous award-winning publications including Fortune, The Hill, International Business Times, New Republic, and The OC Register. Brooke is dedicated to providing insightful, actionable content that empowers readers to make informed decisions about their digital safety. When she's not immersed in the world of cybersecurity, you can find her scrolling social media endlessly, soaking up the latest trends, and also volunteering as a naturalist.","url":"https:\/\/www.mcafee.com\/blogs\/author\/brooke-seipel\/"}]}},"_links":{"self":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts\/225776","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/users\/1440"}],"replies":[{"embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/comments?post=225776"}],"version-history":[{"count":5,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts\/225776\/revisions"}],"predecessor-version":[{"id":226579,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/posts\/225776\/revisions\/226579"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/media\/225809"}],"wp:attachment":[{"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/media?parent=225776"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/categories?post=225776"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/tags?post=225776"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.mcafee.com\/blogs\/wp-json\/wp\/v2\/coauthors?post=225776"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}