This post is also available in:
עברית (Hebrew)
Hotels, often trusted with sensitive guest information, are now prime targets for cybercriminals. A new phishing campaign identified by cybersecurity firm Malware Bytes is preying on hotel staff, tricking them into unwittingly granting hackers access to their systems. The attack, designed to look like a routine reservation confirmation from Booking.com, could have devastating consequences for hotel networks and their guests.
The scam begins with an email that appears to be from Booking.com, urging staff to confirm a reservation. For hotel employees, inundated with reservation requests, it might seem like just another routine email. However, clicking the link leads to a near-identical replica of the Booking.com login page. At this point, a CAPTCHA screen pops up, asking the user to “prove you’re human.” While this seems like a normal security feature, it’s actually part of the scam.
According…
