A phishing campaign disguised as Booking.com emails is targeting hospitality employees with malware aimed at credential theft and financial fraud. Microsoft Threat Intelligence reported that the campaign, attributed to hacking group Storm-1865, began in December and persisted into February 2023. Victims receive varied messages that prompt quick reactions, often linking to fake websites that download malicious software. The targeting has expanded globally, focusing on individuals in North America, Oceania, and various Asian regions, employing social engineering tactics to trick unsuspecting users into divulging sensitive information.
The ongoing phishing campaign, attributed to Storm-1865, impersonates Booking.com to deliver malware targeting hospitality employees for financial fraud.
This campaign has seen increased volume since early 2023, utilizing methods to lure victims through vendor platforms and email services.
Collection
[
|
...
]