Key Points
What you'll learn in this notification
- Targeting hospitality sector predominately in the UK
- Operation employs the “Clickfix” technique to enhance its effectiveness
- Malware associated with these campaigns has been identified as LummaC, a popular infostealer
Mimecast Threat Researchers have observed a malware campaign using Sendinblue (now Brevo) for distribution. Brevo is an all-in-one marketing platform offering email, SMS, automation, and CRM tools for customer engagement. The campaigns focus on using lures related to booking issues to fool users into clicking links appearing to be from booking.com. However, these links use the Sendinblue/Brevo redirect service to track clicks and redirect to malicious sites owned by the threat operation. With most users accessing personal websites on corporate devices, it becomes important to highlight how personal services are being used to target corporate devices.
Please click here to read the entire article.
We welcome your questions; please ask them by posting a comment below.
Dimakatso Makinta
