Reporting these messages to the affected platforms helps stop the spread of fraud and strengthens collective protection in the digital ecosystem. Cybercriminals have perfected social engineering messages that imitate streaming brands to induce errors and capture users' sensitive data. Resilience against these threats depends on a culture of cyber awareness and verifying sources as a first line of defense. To avoid falling into these traps, the following preventive actions are suggested: • Be wary of urgency: In case of any error notification, do not click on links. Access the official application directly or type the address into your browser. • Protect confidential data: No legitimate company will request passwords or banking information through links in emails or text messages. • Enable two-factor authentication: This layer of defense prevents access even if the attacker obtains the username and password. • Use security tools: Having updated antivirus software and anti-phishing filters helps block threats before they materialize. • Develop a critical eye: Check that the sender's domain exactly matches the official brand and verify the actual URL before interacting with any button. Finally, the importance of reporting phishing attempts is emphasized. According to Fortinet's threat intelligence analysis, criminals design messages that mimic the aesthetics of recognized brands to induce the user into error and access their sensitive data. Arturo Torres, Director of Threat Intelligence for FortiGuard Labs at Fortinet for Latin America and the Caribbean, explains that the deception usually begins with messages that appeal to urgency, such as alleged billing errors or account suspensions. The objective is to generate pressure to avoid verification, directing victims to fraudulent websites that are near-exact replicas of official pages, designed to capture credentials and financial data. Risks in the corporate and digital environment The sophistication of these attacks has reached the use of Artificial Intelligence to personalize messages and evade security filters. The risk shifts to the corporate environment when employees access personal services from work devices, opening breaches that can compromise the business's sensitive data.
