Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Hackers are targeting hotel Wi-Fi with particularly evil malware and spear phishing

    wifihotel.jpgThe veteran DarkHotel hacking group is back with a few new tricks up their sleeve. These sophisticated hackers first began targeting high level executives in 2011 with a signature brand of cybercrime that targets business travellers with malware attacks, using the Wi-Fi in luxury hotels across the globe.

    These bad guys would wait for these individuals to connect to a hotel’s WiFi and use social engineering tactics to compromise them. They use different types of exploits, one of them tricking the target into downloading a malicious “update” to a well-known program, such as Adobe.  Once the victims downloaded the update, the hackers would steal information from their laptop and use it to compromise the company.

    "The other tactic is a very carefully crafted phishing email targeted to one person at a time,” senior e-threat analyst at Bitdefender Bogdan Botezatu told ZDNet.

    The email comes with a self-extracting attachment that begins the Trojan download. The malware payload isn’t delivered all at once, as the malware downloads it in steps to circumvent antivirus software. A Word file may be opened on the computer to trick the user from looking at what else is happening on computer. The multi-stage Trojan is an evolutionary step, researchers say, as it helps hackers avoid detection.

    Tips to Stay Safe For Road-warriors

    1. Ensure operating systems are up to date.  New updates come out frequently for operating systems, so for traveler's laptops, enable automatic Windows updates.
    2. Update all 3rd party software apps.  This means everything that is being used — programs for company use, recreational use, and security solutions. I recommend Personal Software Inspector, quite possibly the most useful free app you can have running on a laptop. 
    3. For road warrior's windows laptops, you could consider deploying a security tool that uses application whitelisting as its primary method of malware detection. An example is PC Matic. If the DarkHotel hackers attempted to run the malicious executable file, it would not work.  This is because the malicious file would be categorized as “unknown”.  With application whitelisting, unknown files are blocked from executing until they can be tested and proven safe.  
    4. Have road warriors step through new-school security awareness training, so they know how to stay safe online.

    Effective employee security awareness training combines on-demand web based training with simulated phishing attacks to keep users on their toes with security top of mind, where ever they are. Find out how affordable this is for your organization and be pleasantly surprised.

    Get A Quote Now

    Don't like to click on redirected buttons? Copy / Paste this link in your browser:

    https://info.knowbe4.com/kmsat_get_a_quote_now

     

     

    Return To KnowBe4 Security Blog

    Topics: Phishing

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the founder and CEO of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Comprehensive Anti-Phishing Guide
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest about social engineering

    Subscribe to CyberheistNews