Booking.com customers become new target of hackers

Customers of the world-famous online hotel booking service Booking.com are falling victim to hackers.

Specifically, hackers have developed a new sophisticated scheme to steal both data and money from travelers using Booking.com's services.

Cyber ​​security experts said that hackers did not directly attack Booking.com's system, but took advantage of security vulnerabilities at the company's partner hotels, causing many customers to suffer losses.

The attack began with a call to hotels that partnered with online booking service Booking.com. The attackers asked the front desk staff to help them find lost or forgotten items in the room, then sent emails with links to files stored on Google Drive.

The files the criminals sent were said to contain photos of the stolen items. In fact, they were infected with the Vidar virus, which is used to steal Booking.com login data from partners' systems.

Once they have their Booking.com login details, the scammers will approach customers under the guise of the online booking service and ask them to pay additional fees to enjoy preferential services.

Hackers will guide customers to pay on fake websites or request credit card information over the phone to steal money from accounts.

Experts warn that Booking.com login credentials are already circulating on the black market, where they fetch an average of $2,000 per account, demonstrating the effectiveness and danger of this new scam.

Therefore, cybersecurity company Panda Security recommends that travelers should not trust additional payment requests from Booking.com and contact the hotel directly for confirmation.