AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Phishing attacks in the hospitality industry: new research from Akamai

Increased levels of complexity in hospitality phishing campaigns

Akamai research has detected sophisticated phishing attacks in the hospitality industry. Hackers are using DNS exploits to target both staff and customers, stealing data and damaging reservations. Akamai analyzes domains used by attackers to identify patterns and protect users.

This pill is also available in Italian language

Recent research conducted by Akamai Technologies Inc. has highlighted an increase in the level of sophistication of phishing attacks targeting hospitality industry websites. Starting as early as June 2023, these attacks focused on using exploits of Domain Name System (DNS) protocols, which are the foundation of numerous online services and are a common target for hackers.

Double target for attacks in the hospitality sector

Choosing the hospitality sector as a target means that many attacks take on a dual nature: initially, phishing baits are launched aimed at staff, such as a series of online booking requests. Next, the attackers send follow-up emails that contain malware-infected links or photographs that embed programs to steal data from the operators.

Damage to reservations and information traffic

In this particular case, the attackers also targeted individual customers using online services, further compromising their accounts with emails containing malware. One of their tricks was to replicate hotel booking pages as part of the phishing campaign, with the aim of stealing potential guests' credit card details. The attackers even used an online chat window to make their fake pages look more realistic.

Analysis of domains used by attackers

Akamai researchers were able to examine DNS telemetry data thanks to the company's global presence and its customers' willingness to share anonymized network logs. Akamai stores domain name statistics with times and other information useful for identifying IP address patterns associated with particular domain names. These domains have been grouped and divided into clusters, many of which feature typosquatting techniques, such as combosquatting, which adds the subdomain "reservation" and other common words to the main domain to make them more credible and escape rapid inspection by less users. be careful.

Follow us on WhatsApp for more pills like this

10/23/2023 19:07

Marco Verro

Last pills

Data breach: Fortinet faces new hack, 440GB of stolen informationFortinet under attack: hackers breach security and make information public. discover the details and the consequences for the privacy of involved users

Shocking cyber espionage discoveries: nation-state threatsHow state-of-state cyberwarfare is changing the game in the tech industry: Details and analysis of recent attacks

A new era for Flipper Zero with firmware 1.0Discover the revolutionary features of Flipper Zero firmware 1.0: performance improvements, JavaScript, and enhanced connectivity

EUCLEAK, the vulnerability that allows cloning of YubiKey FIDO sticksLearn how the EUCLEAK vulnerability puts your cryptographic keys at risk