Key Points
- Large-scale credential harvesting campaign targeting hospitality industry professionals
- Impersonates trusted hotel management platforms Expedia Partner Central and Cloudbeds
- Campaigns exploit trust in routine hotel reservation and commission notifications
Campaign Overview
Samantha Clarke, Ankit Gupta and Mimecast Threat Research Team have identified an active phishing campaign specifically targeting hospitality industry professionals through fraudulent emails impersonating Expedia Partner Central and Cloudbeds platforms. This credential harvesting operation leverages the routine nature of hotel booking communications to deceive recipients into surrendering their login credentials.
The campaign employs urgent, business-critical subject lines designed to prompt immediate action from hotel managers and staff. Common lures include commission tracking alerts, system updates, guest booking confirmations, and partner central notifications. These subjects exploit the time-sensitive nature of hospitality operations, where delayed responses to guest bookings or system alerts can directly impact business revenue.
Please click here to read the entire article.
We welcome your questions; please ask them by posting a comment below.
Dimakatso Makinta
