I received a very suspicious email with the sender:
limit.646limit.806@advokatadolf.ru
normally i would safely ignore something like that, but since i'm not in germany at the moment i ask.
The background is also:
I'm in an apartment with encrypted Wi-Fi, and there's also a TV with a Netflix button here.
I registered there with my data.
When I later had connection problems I took a closer look and noticed that the TV was not connected to the Wi-Fi from the apartment but to a free Wi-Fi, which I found very suspicious, passwords are currently being changed.
Sounds a bit "explosive".
Don't go into it, don't click a link. It is best to use an "independent" PC to make the changes - passwords, etc.
Click on it in VMWare without your email being stored there.
But this is 100% malware or scam, why would Google Forms use Evernote?
In fact, it's a very good idea.
Unfortunately, no computer nearby, as soon as I get home I'll investigate.
Sender domain .ru is questionable per se. Do nothing, delete. Changing PWs via "free WLAN" does not necessarily make sense either, it is better to switch off WLAN in another way, perhaps via smartphone and LTE.
It's just a spam mail. Absolutely normal!
And your login to Netflix was transmitted encrypted anyway, you can't intercept anything!
Yeah
Was in the normal network, thanks to you
Certainly not.
Anyone who knows something about the matter can do that.
Public Wi-Fi, with a "reputable" name
wait for someone to go into the network.
Record traffic / data traffic.
Want to see how you record the SSL / TLS connection to my server and can read something useful out of it.
Since SSL has been used so popularly (by website hosts, also thanks to Letsencrypt), very little can be recorded.
Login pages in particular are usually always encrypted!
Netflix encrypts everything anyway.
You need a MITM attack and an active break in the SSL connection and that leads to browser warnings and in most cases, thanks to HSTS or certificate pins, to no connection at all!
See question supplement.
I got it
But if the connection to the web server e.g. Netflix itself is encrypted, still nobody can read it!
WPA2 would be Layer2
SSL / TLS is Layer6
(Layer in the sense of the OSI reference model)
Of course it is better if the network itself is encrypted and only then is the data transmitted securely within the network,
but SSL / TLS itself is absolutely sufficient
(Provided it is of course up-to-date and used correctly)
Just delete a normal spam mail and that's good.
The data is encrypted at Netflix, which means that even if someone from outside or the operator of the WLAN were to sniff, he would not be able to tap anything at Netflix. To do this, he would have to crack the encryption and that is not done on the side. But better safe than sorry
