Cybercriminals are now exploiting a clever trick involving device codes—those short numeric codes you’ve probably used when signing into streaming apps like Netflix on your TV. You’ve seen the process: your TV displays a code, and you enter it on your phone or laptop to connect the device to your account without typing in your full password each time.
In this scam, attackers take advantage of that familiar process. You might receive a text or email with a device code and a link, urging you to log in. What’s really happening? The cybercriminal has started the login process themselves, prompting the system to generate a code. They then send it to you, hoping you’ll unknowingly complete the login on their behalf. If you do, you’re granting them access to your account—and potentially sensitive data.
How to Stay Safe:
Ignore unsolicited device codes.
Enable multi-factor authentication (MFA)
Report anything suspicious.
Don’t let familiarity turn into vulnerability—stay alert and protect your accounts.
