Christopher tipped me off to a Bugtraq Mailing list thread about a possible Netflix security problem involving "Phishing."
This is the Wikipedia definition of phishing:
In computing, phishing is the act of attempting to fraudulently acquire through deception sensitive personal information such as passwords and credit card details by masquerading in an official-looking email, IM, etc. as someone trustworthy with a real need for such information. It is a form of social engineering attack.
Here's a link to an example of a phishing e-mail.
Update: Removed example of "phishing" code. Google it if you want to see what it look like. - Mike
This was just a warning and I have not heard of any phishing attempts involving Netflix.
When I inquired with Netflix about the Bugtraq report, they were already working on it, and they released the fix on Friday.
This is not the first time I've watched Netflix take a security threat seriously. Earlier this year there was a security issue that affected a very small number of users. Netflix responded immediately and fixed the problem within days.
While I believe this will be an ongoing battle for any e-commerce Web site, I've watched Netflix closely as they've responded to two different problems quickly and efficiently.