December 20, 2023 at 04:33PM
Cybercriminals are targeting hotel staff by sending emails that exploit their emotions and urgency to download password-stealing malware. Examples include false complaints, requests for assistance, and emotional scenarios. The ultimate goal is to steal hotel management credentials, which have been used in attacks against Booking.com customers. This has led to significant financial losses for some customers.
Based on the meeting notes, the key takeaways are:
1. Cybercriminals are targeting hotel staff with sophisticated email scams that play on their emotions, time pressure, and helpfulness, aiming to trick them into downloading password-stealing malware.
2. The scam emails often complain about serious issues from a recent stay or request information for a future booking, both requiring a fast response from hotel management.
3. The attackers use various emotional scenarios, such as claiming to be a guest traveling with a disabled child or needing help to retrieve a lost item with sentimental value, to disarm and deceive the staff.
4. The ultimate goal of these attacks is to steal hotel management credentials, which have been used in attacks against Booking.com customers since at least March 2023.
5. Once the credentials are obtained, attackers use them to send messages directly to customers from within Booking.com, creating a sense of urgency to obtain credit card details and siphon money from stolen payment information.
6. There is a high demand for Booking.com credentials on underground forums, with some users offering up to $5,000 for a valid infostealer log, indicating the lucrative nature of these stolen credentials.
7. Customers have suffered financial losses due to the Booking.com scams, prompting the company to implement new safety features to combat fraud.
These takeaways highlight the need for hotel staff to be vigilant and aware of the types of scams circulating to protect themselves and their customers from falling victim to these sophisticated cybercriminal activities.