AI-Powered Cyberattacks Target Hotel Guests:

Kaspersky’s research reveals that AI-powered cyberattacks are targeting hotel guests, posing significant risks to the security of their personal and financial data.

Kaspersky’s Global Research and Analysis Team (GReAT) has identified a new wave of cyberattacks targeting hotel guests, primarily in Brazil and Spain. These attacks, orchestrated by a group known as RevengeHotels, have been active since 2015 but have recently adopted artificial intelligence (AI) to enhance their methods. The attacks aim to steal guests’ payment information and have expanded to include other regions such as Argentina, Bolivia, Chile, Costa Rica, Mexico, and Spain.

The Nature of the Threat

RevengeHotels has evolved its tactics to incorporate AI, making its cyberattacks more sophisticated and challenging to detect. The group has been sending phishing emails to hotel staff, masquerading as reservation requests or job applications. These emails contain malware, specifically VenomRAT, which, once installed, grants attackers access to sensitive guest information, including payment data. The phishing emails are crafted to appear legitimate, often using Portuguese-themed domain names and mimicking well-known services.

Global Reach of Attacks

While Brazilian hotels are the primary targets, the attacks have also been reported in several other countries across Latin America and Europe. Previously, RevengeHotels targeted users in Russia, Belarus, Turkey, Malaysia, Italy, and Egypt, indicating a wide geographical reach and adaptability in their operations. This expansion highlights the growing threat of AI-enhanced cyberattacks on a global scale.

Expert Insights

Lisandro Ubiedo, an expert at Kaspersky’s GReAT, emphasizes that AI is enabling cybercriminals to create more effective tools, making even familiar schemes, such as phishing emails, harder to detect. For hotel guests, this translates to increased risks of personal and financial data theft, even when staying at reputable hotels. The use of AI in these attacks underscores the need for heightened vigilance and improved security measures in the hospitality industry.

Recommendations for Safety

To mitigate the risks posed by these AI-powered attacks, Kaspersky offers several recommendations:

– Treat links and attachments in emails with caution, even if they appear friendly or legitimate. Utilize solutions from the Kaspersky Next product line for real-time protection and threat visibility.

– Be wary of fake email messages that mimic notifications from online stores or banks. Fine-tune antispam settings and avoid opening attachments from unknown senders.

– Refrain from opening unexpected files, even if they come from official-looking emails, as they may contain ransomware or spyware.

The Bottom Line

The emergence of AI-powered cyberattacks targeting hotel guests highlights the evolving nature of cybersecurity threats. As cybercriminals continue to refine their methods, both individuals and organizations in the hospitality sector must adopt robust security measures. By staying informed and vigilant, hotel guests and staff can better protect themselves against these sophisticated threats.