Cyberattacks by hacker group RevengeHotels escalated between July and August, according to Kaspersky’s Global Research and Analysis Team. The group, active since 2015, is now using AI to make attacks more effective and expand into new regions.
Analysis shows that many of the new malicious programs contain AI-generated code, making them harder to detect. While hotels in Brazil have been the main target, attacks have also been reported in other countries. With South Africa and Kenya popular for tourism and Nigeria for business travel, Kaspersky has warned that no country or hotel is immune.
The attacks target hotel employees with phishing emails disguised as reservation requests or job applications. Once opened, malware called VenomRAT is installed, allowing access to guests’ payment data and other sensitive information.
“Сyber criminals are increasingly using AI to create new tools and make their attacks more effective. This means that even familiar schemes, like phishing emails, are becoming harder to spot for a common user,” said Lisandro Ubiedo, Senior Security Researcher at Kaspersky’s Global Research and Analysis Team.
Kaspersky recommends treating links and attachments with caution using security solutions with real-time protection and fine-tuning antispam settings. It warns against opening unexpected files even from official-looking emails.
