Breaking
Unleashing President Trump (TRUMPAI) Meme Coin: The Ultimate Digital Token for MAGA Supporters
Robin Open Social-Fi: Revolutionizes Gaming with Innovative Integration and Global Partnerships
$GUMMY Set to Launch New Meta On Staking on Solana
Rephrase the title:TikTok partners with another concert ticker seller to give users even more live show options
Rephrase the title:RCB’s Glenn Maxwell takes a “mental and physical” break from IPL 2024
Rephrase the title:The Limitless pendant is a new AI device you wear that records everything you hear — take a look
Rephrase the title:Narendra Modi Stadium, Ahmedabad: IPL records and pitch report, average scores, highest wicket-takers and runscorers ahead of GT vs DC
Rephrase the title:Former team India captain invests in affordable e-bike start-up EMotorad
Rephrase the title:Former TikTok Employees Expose Social Media Platform’s Alleged Ties to China and Data Sharing
Rephrase the title:Who will qualify for IPL 2024 play-offs? Scenarios, wins required and chances for all teams detailed
Rephrase the title:Supreme Court asks Ramdev, Balkrishna to issue public apology; says not letting them off hook yet
Rephrase the title:Biden fund gets money from son of GOP donor Larry Ellison
Mon. Sep 16th, 2024

Pressbase

Health

Users on Booking.com are being targeted hackers selling stolen account details on the dark web

By Watson Greey #Booking.com #Fraud #Fraud Scam #hackers #scam #Scams

Cyber Security Firm Unveils Booking.com Account Details Scam Targeting Users

Data breaches have reached Booking.com users as cybercriminals exploit stolen account details to dupe users. SecureWorks, a cybersecurity company, revealed that hackers are selling Booking.com credentials on the dark web for up to $2,000 after leveraging hotel stays to steal the data.

While the security of Booking.com’s main website remains uncompromised, criminals are infiltrating hotel administration portals connected to the service. Secureworks recently published a report detailing an October 2023 attack involving the deployment of the Vidar infostealer, providing threat actors access to the Booking.com management portal. The breach enabled them to interact with guests and conduct fraudulent activities.

The attack involved phishing emails sent to hotel staff, posing as a former guest who had misplaced identification documents. Upon clicking a link in a second email, recipients unknowingly downloaded the Vidar infostealer. Cybercriminals then used the stolen credentials to launch a larger fraud campaign targeting Booking.com customers and properties.

Several customers have reported falling victim to malicious URLs disguised as official Booking.com messages, resulting in the theft of their payment details. The use of Vidar in this targeted campaign is unusual, as it typically harvests credentials from web browsers. However, its flexibility as a malware-as-a-service operation allows any threat actor to utilize it for their purposes.

As a response, cybersecurity experts advise hospitality sector organizations to raise employees’ awareness of this campaign and implement multi-factor authentication on Booking.com accounts. Customers are also urged to exercise caution concerning emails or app messages requesting payment details, as they may be part of fraudulent schemes.

To steer clear of falling victim to such online scams, implementing preventive measures against unauthorized access and fraudulent activities is crucial for both businesses and individuals.

By Watson Greey

Related Post

Health

Rephrase the title:Former TikTok Employees Expose Social Media Platform’s Alleged Ties to China and Data Sharing

Watson Greey Apr 16, 2024
Health

Rephrase the title:UK Lawmakers Debate Ban on Tobacco Sales to Anyone Under 18 Forever

Watson Greey Apr 16, 2024
Health

Rephrase the title:New Drug Shows Promise in Slowing Motor Deterioration Caused Parkinson’s Disease

Watson Greey Apr 16, 2024