Be cautious of this phishing scam that is pretending to be Booking.com.

Be cautious of this phishing scam that is pretending to be Booking.com.

      Digital Trends might receive a commission if you make a purchase through links on our website. Why should you trust us?

      If you work in the hospitality sector and receive an email from Booking.com claiming to be from an upset guest, be cautious—it could be part of a phishing scam. Microsoft has alerted users about an ongoing phishing campaign that involves fake emails from Booking.com, which direct recipients to download harmful software.

      In a blog post regarding this issue, Microsoft Threat Intelligence explains that this campaign has been active since December of the previous year and employs a social engineering tactic called ClickFix. Victims will get an email that seems to originate from Booking.com, with content that can vary widely—from guest complaints to information requests from potential customers or account verification—often including a link (or a PDF with a link) that supposedly takes the user to Booking.com to resolve the issue.

      Upon clicking the link, users are presented with a screen that features a CAPTCHA overlay on a Booking.com site, but this CAPTCHA actually instructs the user to open Windows Run and copy and paste a command that downloads malware onto their computer.

      Once the malware is installed, it has the capability to steal financial information and login credentials, a method that Microsoft has linked to a previous phishing operation by a group they refer to as Storm-1865.

      Phishing scams are unfortunately common today, but this particular version is relatively sophisticated, preying on hospitality workers' concerns about guest satisfaction. To safeguard against this and other phishing attempts, Microsoft recommends that users verify the sender's email address, remain cautious of messages that convey urgent threats, and hover over links to view the complete URL before clicking. When uncertain, it’s best to navigate directly to the service provider—such as Booking.com—rather than clicking on a link.

      Georgina has been the space writer at Digital Trends for six years, focusing on human space exploration and planetary topics.

      Recent reports indicate that COVID-19-related phishing emails are being used to extract sensitive information from business owners, utilizing Google Forms as a means of gathering data.

      Phishing messages based on COVID-19 have reportedly gained traction in recent weeks, according to Bleeping Computer.

      Setting up phishing operations targeting Microsoft 365 has become relatively simple, due to a phishing-as-a-service (PhaaS) platform named Caffeine. This service offers cybercriminals a method to infiltrate individuals' Microsoft 365 accounts, as reported by Bleeping Computer.

      One of the latest email scams is a clever scheme that encourages companies to transfer money by impersonating communication from senior management within an email thread. This scam, termed a business email compromise (BEC) campaign, involves a malicious actor posing as a company executive, sending an email that appears to be a forwarded message with directives for an employee to wire funds. Typically, the victims of this scam are employees in financial departments or those authorized to conduct wire transfers.

Be cautious of this phishing scam that is pretending to be Booking.com. Be cautious of this phishing scam that is pretending to be Booking.com. Be cautious of this phishing scam that is pretending to be Booking.com. Be cautious of this phishing scam that is pretending to be Booking.com. Be cautious of this phishing scam that is pretending to be Booking.com.

Other articles

AMD's GPU stock issues are expected to improve, but I'm worried about the prices. AMD's GPU stock issues are expected to improve, but I'm worried about the prices. An AMD executive has recently provided an update regarding the availability of the RX 9000 series. While the news is promising, it isn’t quite time to celebrate just yet. Nvidia asserts that the RTX 5000 has been shipped more effectively than the 4000, yet gamers continue to wait. Nvidia asserts that the RTX 5000 has been shipped more effectively than the 4000, yet gamers continue to wait. Experts believe that Nvidia has employed a "paper launch" strategy to maintain consumer interest in its RTX 5000 series GPUs. Here are some indications that support this theory. Why OpenAI’s copyright strategy will affect you more than you realize Why OpenAI’s copyright strategy will affect you more than you realize OpenAI has submitted a proposal to the White House supporting unlimited access to copyrighted content for AI training purposes. Three excellent free movies to watch this weekend (March 14-16) Three excellent free movies to watch this weekend (March 14-16) Watch these complimentary films from March 14-16: an acclaimed musical, a comedy from the 1990s, and an exciting crime thriller. Experience enjoyment and savings: explore nearby adventures with Groupon's "Things to Do." Experience enjoyment and savings: explore nearby adventures with Groupon's "Things to Do." Groupon / Stuck in a rut? Organize your next impromptu date night, family activity, or simply discover something to liven up your week with Groupon’s “Things to Do” section. It's your entrance to thrilling local experiences at fantastic prices. Seize the opportunity to impress by arranging an event that won’t strain your budget. […] Unbelievable NordVPN offer: 70% discount, plus 6 free months! Unbelievable NordVPN offer: 70% discount, plus 6 free months! By subscribing to NordVPN's two-year plans, you can take advantage of a 70% discount, and if you opt for NordVPN Plus or NordVPN Complete, you'll receive an additional six months for free!

Be cautious of this phishing scam that is pretending to be Booking.com.

Microsoft has issued a warning regarding a new phishing scam that is aimed at individuals in the hospitality sector.