AI DevwWrld Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Phishing attacks in the hospitality industry: new research from Akamai

Increased levels of complexity in hospitality phishing campaigns

Akamai research has detected sophisticated phishing attacks in the hospitality industry. Hackers are using DNS exploits to target both staff and customers, stealing data and damaging reservations. Akamai analyzes domains used by attackers to identify patterns and protect users.

This pill is also available in Italian language

Recent research conducted by Akamai Technologies Inc. has highlighted an increase in the level of sophistication of phishing attacks targeting hospitality industry websites. Starting as early as June 2023, these attacks focused on using exploits of Domain Name System (DNS) protocols, which are the foundation of numerous online services and are a common target for hackers.

Double target for attacks in the hospitality sector

Choosing the hospitality sector as a target means that many attacks take on a dual nature: initially, phishing baits are launched aimed at staff, such as a series of online booking requests. Next, the attackers send follow-up emails that contain malware-infected links or photographs that embed programs to steal data from the operators.

Damage to reservations and information traffic

In this particular case, the attackers also targeted individual customers using online services, further compromising their accounts with emails containing malware. One of their tricks was to replicate hotel booking pages as part of the phishing campaign, with the aim of stealing potential guests' credit card details. The attackers even used an online chat window to make their fake pages look more realistic.

Analysis of domains used by attackers

Akamai researchers were able to examine DNS telemetry data thanks to the company's global presence and its customers' willingness to share anonymized network logs. Akamai stores domain name statistics with times and other information useful for identifying IP address patterns associated with particular domain names. These domains have been grouped and divided into clusters, many of which feature typosquatting techniques, such as combosquatting, which adds the subdomain "reservation" and other common words to the main domain to make them more credible and escape rapid inspection by less users. be careful.

Follow us on Threads for more pills like this

10/23/2023 19:07

Editorial AI

Last pills

Global threat: serious security flaw discovered in the IEEE 802.11 Wi-Fi standardNew flaw in the IEEE 802.11 Wi-Fi standard exposes the security of global networks to serious risks

The fundamental aspects of computer security in everyday lifeProtection and prevention: how to safeguard personal data in the digital world

Black Basta hits Synlab: analysis of the attack and cybersecurity lessons for the healthcare sectorCyber defense strategies: how to protect healthcare infrastructures from ransomware

Google releases an emergency update for ChromeUrgent update to fix critical vulnerability in Chrome, users advised to install it immediately