Reaction score
Fraudsters are targeting travelers through, attempting to steal both data and money in a sophisticated scheme, as reported by cybersecurity company Panda Security. While's internal systems and networks remain uncompromised, security vulnerabilities at partner hotels have exposed many customers to these attacks.

The scam initiates with fraudsters calling hotels affiliated with the service, posing as guests seeking assistance in locating misplaced items. Subsequently, they send an email containing a link to Google Drive files purportedly containing photos of the lost items. However, these files are infected with the Vidar virus, designed to pilfer login credentials.

Using the compromised credentials, scammers approach genuine customers through the booking service, convincing them to make payments for fictitious fees. This is achieved by directing them to fraudulent payment pages or requesting credit card information over the phone.

Security experts emphasize the circulation of credentials on dark markets, fetching up to $2,000 per account, underscoring the effectiveness and severity of the new scam. The company advises travelers to exercise caution, not trusting requests for additional payments, and recommends direct contact with hotels for verification.

An additional warning sign for customers is being asked to provide payment information via phone or instant messaging. Panda Security's report emphasizes that legitimate transactions should occur through online portals, and legitimate hotels are unlikely to request personal information over the phone or messaging apps.