email responses go back to a single Gmail account. That’s what you call efficiency of dots.
Dot fraud also impacts consumers. Cyber-criminals have also misused the Gmail feature to fool others into paying for their Netflixs access. As described by James Fisher, the bad guys can find a Gmail address which is already registered, create a similar account name with an extra dot, then sign up for a free trial with a throw-away card number. Then comes the waiting game of cancelling the card, waiting for Netflix to bill the cancelled card – and then having Netflix email the victim asking for their card number.
Unlike a phishing attempt, the potential victim would get a real email from Netflix. And if the user does not notice that the card number is different, they could end up for paying for the bad guy’s binge watching.
Whose fault is it – Gmail? Netflix? Or the gullible user? Either way, you’ve got to cross the “T” — and look out for the “I” — whether it is dotted or not.