Phishing Frenzy: Storm-1865 Targets Hospitality with Fake Booking.com Emails
Booking.com’s latest email scam has hospitality workers clicking faster than a guest at an all-you-can-eat buffet! But instead of a reservation, they’re served a side of malware. Microsoft’s Storm-1865 strikes again, luring clicks with fake reviews and promos, leading to a malware feast. Beware! The only thing getting booked is your data.
Hot Take:
Booking.com emails are supposed to lead you to paradise—or at least a decent hotel room. But thanks to Storm-1865, they’re now leading hospitality employees on a not-so-glamorous trip to malware hell. Thanks, Storm-1865, for turning “Click here for a great deal!” into “Click here for a cyber ordeal!”
Key Points:
- Storm-1865 is targeting hospitality employees with phishing emails disguised as Booking.com communications.
- The phishing campaign uses a fake CAPTCHA puzzle to trick users into downloading malware.
- Malicious emails are sent via various vendor platforms and email services, but oddly not Microsoft Exchange.
- Targets include employees in North America, Oceania, South and Southeast Asia, and Europe.
- Microsoft declined to provide more details, leaving us to wonder just how many have fallen for this digital vacation scam.
Already a member? Log in here