FireEye researchers believe a group linked to the Russian government and US election hacks, APT28, is targeting hotels in Europe and the Middle East.
A notorious group of Russian hackers are targeting hotel guests in Europe and the Middle East.
Researchers at security firm FireEye on Friday warned that hacking group APT28 is using a tool known to sniff user passwords from Wi-Fi traffic. They access hotel networks via spear phishing emails with attachments that might seem legitimate at first glance (Hotel_Reservation_Form.doc). But “successful execution of the macro within the malicious document results in the installation of APT28’s signature Gamefish malware,” FireEye says.
Source: PC Mag