Malware, Phishing customers targeted with Vidar infostealer

BBC News reports that major online travel agency had its customers in the U.S., UK, and other parts of the world impacted by fraud following a social engineering attack that involved the deployment of the Vidar information-stealing malware. Hotel staff have been lured to download malicious software with the Vidar infostealer by threat actors masquerading as guests who forgot their passports, with a Google Drive link purporting to have an image of the misplaced passport downloading the malware to determine access and all clients with room reservations, a report from Secureworks revealed. Hotel clients are then being tricked to provide payments to the attackers instead of their hotel. "The scam is working and it's paying serious dividends. The demand for credentials is likely so popular because it's seeing a high success rate, with emails targeting genuine customers and appearing to come from a trusted source. It's social engineering at its best," said Secureworks Counter Threat Unit Director of Threat Intelligence Rafe Piling.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.