Skip to content
Threat Note Threat Note

Aggregating Cyber Insights

  • Articles
  • Breaches
  • Learning
  • News
  • Podcast
  • Research
  • Toolkit
  • Vulnerabilities
  • Webinars
  • About Us
  • Home
  • News
  • From The Hacker News – Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails
From The Hacker News – Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails
Posted inNews

From The Hacker News – Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails

Posted by shaikh Saqib March 13, 2025

Microsoft has shed light on an ongoing phishing campaign that targeted the hospitality sector by impersonating online travel agency Booking.com using an increasingly popular social engineering technique called ClickFix to deliver credential-stealing malware.
The activity, the tech giant said, started in December 2024 and operates with the end goal of conducting financial fraud and theft. It’s Read More

Tags:
advanced phishing tacticsadversarial social engineeringAPT28AsyncRATBooking.com impersonation attackClickFix phishing campaigncredential stealing malwarecyber awarenesscyber defensecyber protectioncyber threat intelligencecybercriminal group tacticscybersecuritycybersecurity newsDanabotdata breachesdeceptive phishing emailsdigital privacye-commerce fraudfake CAPTCHA social engineeringfinancial fraud malwarefraudulent payment scamshackinghacking newshospitality sector phishing threatsinfosecinfosec newsLumma Stealermalware delivery methodsMicrosoft security reportmshta.exe abuseMuddyWaternation-state malware campaignsNetSupport RATnetwork securitynoteonline securitysecurity perspectivesecurity updatesSMOKESABER downloaderStorm-1865targeted social engineeringthreatthreat intelligencethreat notethreatnoteVenomRATXWorm
Last updated on March 14, 2025

Latest Posts

  • From Dark Reading – After Replacing TeamPCP Malware, ‘PCPJack’ Steals Cloud SecretsMay 8, 2026
  • From Security Week – Worries About AI’s Risks to Humanity Loom Over the Trial Pitting Musk Against OpenAI’s LeadersMay 8, 2026
  • From The Hacker News – Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level AccessMay 7, 2026
  • From The Hacker News – PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud SystemsMay 7, 2026
  • From Dark Reading – Has CISA Finally Found Its New Leader in Tom Parker?May 7, 2026
Total Visitors
1497359

Archives

  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025
  • April 2025
  • March 2025
  • February 2025
  • January 2025
  • December 2024
  • November 2024
  • October 2024
  • September 2024
  • August 2024
  • July 2024
  • June 2024
  • May 2024
  • April 2024
  • March 2024
  • February 2024
  • January 2024
  • December 2023
  • November 2023
  • October 2023
  • September 2023
  • August 2023
  • July 2023
  • June 2023
  • May 2023
  • April 2023
  • February 2023
  • December 2022
  • November 2022
  • May 2022
Copyright 2026 — Threat Note. All rights reserved. Bloghash WordPress Theme
Scroll to Top