Hotel booking scams are coming back to emails

Scams typical of summer have begun to appear, one of them being known as the false hotel reservation, which seeks to steal the victim’s email credentials to access sensitive data and promote new attacks.

In recent years, it has become fashionable to receive a message via email supposedly sent by the well-known Booking platform, in which the user is alerted about his reservation, in order to get him to open a malicious file.

This email is supposedly sent to confirm a reservation made and report the amount to be paid, and attaches a document. If it opens, it requires the Outlook account password to be able to read it, while in the background and blurred, it shows what appears to be the Booking logo.

It is likely that in the case of receiving this email, the potential victim does not know anything about said reservation, as ESET mentions, but the urgency of the date on which it is sent and the amount of money are enough to alarm.

In their analysis of the file, the researchers from this cybersecurity firm have verified that it is not actually a PDF file but an HTML extension, which will open in the browser when clicked on.

ESET researchers identified this ‘phishing’ campaign in both personal and corporate accounts, and its purpose is to gain access to the email account, where users store important data and, in the case of companies, to compromise sensitive information or facilitate further attacks.

Source: dpa

(Reference image source: Unsplash+)

Visit our news channel on Google News and follow us to get accurate, interesting information and stay up to date with everything. You can also see our daily content on Twitter and Instagram