Cybercriminals are impersonating Booking.com to trick hotel and hostel workers into downloading malware in a phishing campaign targeting North America, Southeast Asia, and Europe since December 2024. By displaying fake error messages, the campaign tricks users into applying a fix that results in the downloading of malware. Several strains of malware were identified, linked to the group Storm-1865 which has launched similar campaigns in the past.
MacSync Stealer variant finds a way to bypass Apple malware protections – 9to5Mac
MacSync Stealer variant finds a way to bypass Apple malware protections 9to5Mac
