Russian hackers target European hospitality industry with “Blue Screen of Death” malware Source: https://therecord.media/russian-hackers-europe-hospitality-blue-screen
Suspected Russian cybercriminals are using a fake “Blue Screen of Death” page to target European hotels and hospitality companies with malware. Researchers at Securonix said they have been tracking an ongoing malware campaign they call PHALT#BLYX, which typically starts with a lure centred on hospitality search engines. Securonix said the campaign is another version of the “ClickFix” technique.
The phishing emails—most titled “Reservation Cancellation”—included room charge details in euros, indicating the actors intended to target European hotels, hostels and inns. The emails prominently featured charges over €1,000 ($1,170) to create urgency and panic, researchers said.
The emails include a “See Details” button that directs recipients to a fake hotel booking page displaying a fake browser error message: “Loading is taking too long.” The error message includes a prominent “Refresh page” button which, when clicked, takes the victim to a fake “Blue Screen of Death.”
“The technical complexity of the infection chain reveals a clear intent to evade detection and maintain long-term persistence.”
