Kaspersky warns Gen Z internet users (or Generation Z), that is, people born between 1997 and 2010. According to Russian researchers, more and more hackers are using the popularity of Japanese anime among this generation to trap internet users.
As Kaspersky explains in its report, a large proportion of internet users under 30 spend part of their free time on streaming sites watching Japanese anime, such as Naruto, One Piece, Demon Slayer, Attack on Titan and Jujutsu Kaisen. Aware of the appeal of these anime, hackers have set up a series of scams using "their visual identity".
More than 250,000 cyberattacks in one year
Between April 2024 and March 2025, Kaspersky recorded more than 250,000 cyberattacks exploiting Japanese anime. Hackers mainly used Naruto as a lure, even though the anime series dates back to the 2000s. Researchers recorded 114,216 attempted attacks with Naruto "as bait". In second place is Demon Slayer with 44,200 attempts, followed by Attack on Titan, which has been used as a decoy in nearly 40,000 cyberattacks.
To trap Internet users, cybercriminals promote fake exclusive episodes, leaks, or even premium access. There are many fraudulent sites online that promote cheap alternatives to Netflix, preceded by a free trial period. Typically, these attacks involve spreading malware on victims' computers. In other cases, it's more a matter of subscribing you without your knowledge to overpriced services, billed monthly or weekly.
Popular films also serve as decoys
Alongside Japanese anime, hackers continue to use films "that continue to resonate with Generation Z" as bait. This is the case for Shrek, Stranger Things, Twilight, Inside Out 2, and Deadpool & Wolverine. These feature films "were the subject of 43,302 attempted attacks."
Furthermore, the Russian company points out that streaming platforms such as Netflix, Amazon Prime Video, Disney+, Apple TV Plus, and HBO Max are also among cybercriminals' favorite lures. In less than a year, Kaspersky has identified nearly 100,000 cyberattacks "using the brands and visuals of these major streaming platforms." Here again, the hackers were seeking to spread viruses. Unsurprisingly, most of the attacks impersonated Netflix, which remains the number one VOD provider with 301.6 million subscribers worldwide. Kaspersky counted 5,679 attempted attacks and over 2.8 million phishing pages imitating the Netflix interface. Hackers use fake login pages, fake "free trial" links, or "spoof password reset emails." To avoid hackers' attacks, Kaspersky recommends using a legitimate, paid streaming subscription and only using official apps downloaded from app stores or official websites. Avoid illegal streaming sites, which are full of malicious ads. Before entering personal information, such as your email address, login details, or bank details, on Netflix, Disney+, and others, always check the website's authenticity. Make sure you're on an official page before sharing anything. Finally, if you're downloading TV shows or movies, be very careful with the files you download. A video should never be in .exe or .msi format. These extensions are reserved for executable files, which may contain viruses. If the episode you downloaded is in .exe format, you are in the crosshairs of a hacker.
Source: Kaspersky
0 Comments