The attack leverages social engineering techniques and exploits the time-sensitive nature of hotel bookings to create a sense of urgency, compelling victims to take immediate action without proper security verification. The attack demonstrates how cybercriminals continue to develop sophisticated social engineering techniques targeting specific industries with custom-tailored approaches, making standard security awareness training increasingly challenging to implement effectively. A sophisticated phishing campaign has emerged targeting the hospitality industry, where cybercriminals impersonate Booking.com to trick hotel staff into installing malware on their systems. Malwarebytes researchers noted that when hotel employees follow the instructions, they are directed to a fraudulent website displaying a fake CAPTCHA verification interface. Once victims interact with the fake CAPTCHA by checking the verification box, they receive a series of instructions prompting them to perform specific actions on their systems. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. The malicious actors send fake Booking.com emails to hotel staff containing what appears to be legitimate reservation details. The primary objective appears to be accessing customer payment information and personal data stored in hotel management systems, which represents highly valuable commodities on dark web marketplaces. With years of experience under his belt in Cyber Security, he is covering Cyber Security News, technology and other news. The researchers noted this campaign aligns with recently observed fake CAPTCHA schemes targeting various sectors, indicating an evolution in cybercriminal tactics. Tushar is a Cyber security content editor with a passion for creating captivating and informative content. These instructions guide users to press the Windows key + R to open the Run dialog box, then paste content from the clipboard and press Enter.
This Cyber News was published on cybersecuritynews.com. Publication date: Fri, 28 Mar 2025 11:05:13 +0000