ECONOMY & WORK
MONEY 101
NEWS
PERSONAL FINANCE
NET WORTH
About Us Contact Us Privacy Policy Terms of Use DMCA Opt-out of personalized ads
© Copyright 2023 Market Realist. Market Realist is a registered trademark. All Rights Reserved. People may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.
MARKETREALIST.COM / NEWS

Booking.com Struggles Against Rising Hotel Booking Cyber Frauds; How to Safeguard Yourself

The attackers, employing cunning tactics, utilized compromised hotel accounts to send deceptive emails and in-app messages to Booking.com customers.
PUBLISHED DEC 18, 2023
Cover Image Source: Pexels | Photo by Pixabay
Cover Image Source: Pexels | Photo by Pixabay

We live in an era where convenience often comes at the cost of cybersecurity. Booking.com finds itself at the center of a cybercrime storm. Cybercriminals are targeting unsuspecting customers through a sophisticated scheme that involves hijacking hotel accounts and manipulating users into divulging sensitive payment information.

Cover Image Source: Travel Trade Journal
Booking.com | Travel Trade Journal

A recent investigation by Secureworks, a prominent U.S.-based cybersecurity firm, has brought to light a concerning attack that unfolded in October 2023, per BBC. The attackers, employing cunning tactics, utilized compromised hotel accounts to send deceptive emails and in-app messages to Booking.com customers. These messages, seemingly originating from hotel owners, requested the confirmation of payment details for upcoming stays. The trap was set in stages, with the initial email carefully crafted to appear innocuous, void of any links or attachments that might trigger security alerts. The second email, however, contained URLs leading to seemingly legitimate documents hosted on services like Google Drive and Dropbox.

When recipients innocently downloaded the ZIP files, they unwittingly unleashed the Vidar infostealer. This malicious software enabled the perpetrators to seize control of the hotel's Booking.com account, granting them access to the Booking.com management portal, which harbored details of upcoming bookings. Exploiting this information, the fraudsters proceeded to send misleading emails directly to booked guests.

Pexels | Photo by Tima Miroshnichenko
Hacker | Pexels | Photo by Tima Miroshnichenko

The aftermath was swift and impactful. A Secureworks researcher recounted, "The day after the malware was executed, a hotel employee observed that multiple messages had been sent to upcoming guests from the hotel’s Booking.com account. Several hours later, hotel customers started to complain that money had been taken from their accounts." This fraudulent activity, though not a recent phenomenon, has witnessed a surge in intensity over the past year. Cybercriminals are now venturing into the dark web to broaden their pool of victims, as reported by the BBC. Booking.com users have expressed their frustration at the company's apparent failure to safeguard them against such cyber threats.

Booking.com, in response to the escalating issue, has pledged to introduce new safety features. However, they acknowledge that there is "no silver bullet" to eliminate the risk. The company urges users to remain vigilant and emphasizes that no legitimate transaction would ever require customers to provide credit card details through unconventional channels, such as phone calls, emails, or text messages, including WhatsApp.

Despite these assurances, some users voiced their displeasure with Booking.com's handling of the situation. According to the BBC, disgruntled users expressed their anger at the company's failure to prevent them from falling victim to cybercriminals. One user commented, "Booking.com users have spoken of their anger at the company’s failure to stop them falling victim to cyber-criminals."

Pexels | Photo by Max Rahubovskiy
Hotel room | Pexels | Photo by Max Rahubovskiy

In light of this growing threat, Secureworks advises organizations in the hospitality and travel industry to implement multi-factor authentication on their Booking.com accounts. Educating employees about social engineering campaigns and instilling a habit of double-checking URLs before opening them are essential measures to thwart potential attacks.

For individual customers, caution is the watchword. Secureworks recommends approaching any emails or app messages requesting payment details with skepticism, even if they seemingly originate from legitimate Booking.com accounts. Vigilance is crucial, and customers are advised to verify any payment requests that deviate from the details listed on their confirmation.

As Booking.com grapples with the fallout from this intricate cyber scam, the incident serves as a stark reminder of the ever-evolving tactics employed by cybercriminals. In an era where personal information is a valuable commodity, users must remain vigilant, and companies must continuously bolster their cybersecurity measures to stay one step ahead of those seeking to exploit the trust of unsuspecting customers.

MORE ON MARKET REALIST
Sweet husband handled family bills for 40 years. After his death, his wife found out an incredible secret
NEWS
Sweet husband handled family bills for 40 years. After his death, his wife found out an incredible secret
The man's daughter mentioned how he also paid for gas, water, and power, to make sure his wife wouldn't need to.
52 minutes ago
12-year-old boy emails Costco CEO asking to help with fundraiser. He made sure to 'do whatever it takes'
COSTCO
12-year-old boy emails Costco CEO asking to help with fundraiser. He made sure to 'do whatever it takes'
Grant Cerwin sent an email to Craig Jelinek asking if Costco could donate one of the famous 93-inch teddy bears for his middle school fundraiser in LA.
11 hours ago
Maryland dad hits $50,000 lottery prize but couldn't find his ticket. Then, he realized it's laundry day.
NEWS
Maryland dad hits $50,000 lottery prize but couldn't find his ticket. Then, he realized it's laundry day.
The man said that his girlfriend often tosses clothes into the washing machine without checking their pockets.
20 hours ago
Kind woman offers pizza to a 'homeless' man in New York — she had no clue he's a Hollywood icon
NEWS
Kind woman offers pizza to a 'homeless' man in New York — she had no clue he's a Hollywood icon
The A-list actor was extremely happy with the food and blessed her and her family.
22 hours ago
Guy tries to deposit $1,200 at a Citibank ATM to pay his mortgage. Then, the machine froze.
NEWS
Guy tries to deposit $1,200 at a Citibank ATM to pay his mortgage. Then, the machine froze.
The video has gone viral and people are responding with their own scary experiences at ATMs.
23 hours ago
A single mom is asked to clean a 4-bedroom home — then, came a surprise that changed her life
NEWS
A single mom is asked to clean a 4-bedroom home — then, came a surprise that changed her life
The organization asked Simmons' employers to send a deserving candidate and they nominated her.
1 day ago
Man who kept collecting pennies for 45 years finally cashed them in for an incredible amount
NEWS
Man who kept collecting pennies for 45 years finally cashed them in for an incredible amount
A "gift from God," Otha Anders started collecting pennies after he found one lying on the ground.
1 day ago
You can now earn $2,500 by just watching your favorite holiday movies — here's how to apply
NEWS
You can now earn $2,500 by just watching your favorite holiday movies — here's how to apply
Perks of the job also include year-long subscriptions for all major streaming services.
1 day ago
An elderly Kroger cashier was living in a homeless shelter. A stranger’s kindness turned it around.
NEWS
An elderly Kroger cashier was living in a homeless shelter. A stranger’s kindness turned it around.
The TikToker turned out to be a philanthropist who has dedicated his life to make dreams come true.
1 day ago
Boy, 9, gives teacher his $15 birthday cash and a note. When his parents read it, they were in tears.
NEWS
Boy, 9, gives teacher his $15 birthday cash and a note. When his parents read it, they were in tears.
The parents were surprised when they found a note written in response to the child's gesture.
1 day ago
Elderly woman tries to sell her $30 table on Facebook — she narrowly escaped losing $3,000 a day
NEWS
Elderly woman tries to sell her $30 table on Facebook — she narrowly escaped losing $3,000 a day
The woman got an email that looked authentic with the transaction platform's logo at first.
2 days ago
Dad gives his 6-year-old son $600 to buy whatever he wants — how he spent it moved him to tears
NEWS
Dad gives his 6-year-old son $600 to buy whatever he wants — how he spent it moved him to tears
The child was putting items in the shopping cart but then suddenly started unloading it.
2 days ago
Struggling 82-year-old Walmart cashier can finally retire — all thanks to a stranger who raised $100,000
WALMART
Struggling 82-year-old Walmart cashier can finally retire — all thanks to a stranger who raised $100,000
The man was finally able to pay off his debt and spend time with his family in Florida after years.
3 days ago
'Antiques Roadshow' guest tears up after learning the value of 'national treasure' blanket behind his chair
NEWS
'Antiques Roadshow' guest tears up after learning the value of 'national treasure' blanket behind his chair
The guest got emotional since the family hadn't seen much wealth for generations.
3 days ago
A 93-year-old grandma was fighting a legal battle for her land. Then, Snoop Dogg stepped in to help.
NEWS
A 93-year-old grandma was fighting a legal battle for her land. Then, Snoop Dogg stepped in to help.
Apart from the hip-hop legend, NBA star Kyrie Irving was another celebrity among the donors.
4 days ago
Shark Tank's biggest ever miss was sold for $1 billion and used by millions of Americans every day
NEWS
Shark Tank's biggest ever miss was sold for $1 billion and used by millions of Americans every day
Jaime Siminoff, whose pitch was rejected by all but one shark, walked out without a deal. He returned to the show as a millionaire investor.
4 days ago
Charlie Sheen no longer cashing in on ‘Two and a Half Men’ reruns — it got worse after selling his rights
NEWS
Charlie Sheen no longer cashing in on ‘Two and a Half Men’ reruns — it got worse after selling his rights
Actor Charlie Sheen is most known for his role on syndicated tv show 'Two and a Half Men.' How much are reruns paying him?
5 days ago
Costco member reveals the 'worst part' about being a member — and it's oddly relatable
COSTCO
Costco member reveals the 'worst part' about being a member — and it's oddly relatable
Others commented sharing their own experiences with salespeople pestering them.
5 days ago
Fan asks Jelly Roll to pay her $40,000 college tuition at a concert — his response changed her life
NEWS
Fan asks Jelly Roll to pay her $40,000 college tuition at a concert — his response changed her life
The woman said that Jelly Roll's music had inspired her to overcome bullying and alcoholism.
6 days ago
Mom tells gamer son not to play Fortnite — he wins $1 million and gifts her a new home instead
NEWS
Mom tells gamer son not to play Fortnite — he wins $1 million and gifts her a new home instead
Jaden became the youngest millionaire in the history of e-sports after his performance at the tournament.
6 days ago