Mexico City authorities are warning citizens of a surge in phishing scams targeting users of streaming platforms like Netflix. The Cyber Police unit of the Secretariat of Security of Mexico City (SSC-CDMX) has identified a recent increase in fraudulent emails and text messages designed to steal personal and banking information.
The scams typically involve messages falsely claiming a subscription is expiring or a payment has failed, prompting recipients to click on a link to “update” their account details. These links redirect users to fake websites that closely mimic the legitimate streaming service’s portal, where they are asked to enter their email address, password, and financial data. This information is then used for financial fraud or to gain access to other personal accounts, a tactic known as phishing.
According to the SSC-CDMX, cybercriminals are meticulously replicating the logos, colors, and corporate language of popular platforms to create a convincing illusion of authenticity. The Policía Cibernética first detected the increased activity in late 2025.
Authorities emphasize that legitimate streaming services do not request personal or banking information via email, text message, or phone calls. Netflix’s help center confirms that users should never provide such information in response to unsolicited requests and advises users not to open suspicious links.
Netflix offers a phishing reporting tool. Users can forward suspicious messages to phishing@netflix.com. If the email is rejected, it indicates that Netflix has already received multiple reports about the same message, confirming it as a phishing attempt.
The Cyber Police recommend the following preventative measures:
- Do not respond to suspicious emails or click on links within them.
- Contact your streaming provider directly to verify any questionable notifications.
- Check your account status through the official application or website.
- Be wary of messages creating a sense of urgency.
- Never share personal or banking information.
- Look for spelling or grammatical errors, which are common in phishing scams.
Citizens who receive these fraudulent messages, even if they haven’t fallen victim to the scam, are encouraged to report them to the Cyber Police at 55 5242 5100, extension 5086, or via email at policia.cibernetica@ssc.cdmx.gob.mx. The SSC-CDMX as well offers preventative digital literacy workshops for schools, workplaces, and businesses.
