A Russian-speaking hacking group has registered over 4,300 domains this year to conduct a sophisticated phishing campaign targeting hotel guests through fake booking sites. The campaign employs customized, multi-language fake pages that mimic major travel brands to steal credit card information and personal data. #Booking #Expedia #Agoda #Airbnb #PhishingKit
Keypoints
- The phishing campaign targets customers of hospitality booking platforms with personalized fake websites.
- The attackers use a sophisticated, automated phishing kit that adapts pages based on URL strings and employs fake CAPTCHA checks.
- Victims are tricked into entering credit card details on fake pages that appear to support multiple languages and imitate legitimate branding.
- The threat actor behind this campaign remains unidentified but shows possible links to other regional phishing operations.
- This campaign highlights the rise of phishing-as-a-service, making large-scale, automated credential theft more accessible.
Read More: https://thehackernews.com/2025/11/russian-hackers-create-4300-fake-travel.html