Cyber-Espionage Group Targets Corporate Exec With Hotel Hacking

By  |  August 11, 2015
 | 

A cybercrime syndicate known as “Darkhotel” has found a way to use exploits stolen from Hacking Team to steal data from corporate executives staying in luxury hotels.

    Get the Full Story

    Complete the form to unlock this article and enjoy unlimited free access to all PYMNTS content — no additional logins required.

    yesSubscribe to our daily newsletter, PYMNTS Today.

    By completing this form, you agree to receive marketing communications from PYMNTS and to the sharing of your information with our sponsor, if applicable, in accordance with our Privacy Policy and Terms and Conditions.

    First uncovered in 2014 by Kaspersky Lab, Darkhotel has been targeting business executives for the past eight years via spearphishing attacks. According to Kaspersky, the group has been particularly focused on high-ranking executives at electronics and pharmaceutical companies, along with employees at chemical companies, automotive manufacturers, law enforcement and military and non-governmental organizations.

    “Darkhotel seems to have burned through a pile of Flash zero-day and half-day exploits over the past few years, and it may have stockpiled more to perform precise attacks on high-level individuals globally,” Kurt Baumgartner, principal security researcher at Kaspersky Lab, told Wired UK.

    The latest round of attacks is apparently powered by a zero-day exploit in Adobe Flash that used to be a main part of Hacking Team’s spyware services. By leveraging a website with malware, hackers have managed to infect executives’ machines via the flaw in the Adobe software.

    Hacking Team’s zero-day flaw was leaked online July 5 when the Italian spyware contractor suffered a major breach. According to reports, Darkhotel is not a client of Hacking Team, but the group did begin making use of Hacking Team’s exploits almost immediately after it was leaked.

    The attacks began in Asia but have since traveled the globe to Germany and Mozambique. The attack functions when criminals jack a hotel Wi-Fi network and use it to install spyware on attached computers. The group also uses stolen certificates, social engineering and a variety of other zero-day techniques to sneak into business computers.

    Advertisement: Scroll to Continue

    [vc_row full_width=”” parallax=”” parallax_image=””][vc_column width=”1/1″][/vc_column][/vc_row][vc_row full_width=”” parallax=”” parallax_image=””][vc_column width=”1/1″][vc_separator color=”grey” align=”align_center” style=”” border_width=”” el_width=””][vc_single_image image=”148412″ alignment=”center” style=”vc_box_shadow_3d” border_color=”grey” img_link_large=”” img_link_target=”_blank” css_animation=”left-to-right” img_size=”full” link=”http://www.pymnts.com/whats-hot-today/”][vc_column_text css_animation=””]

    To check out what else is HOT in the world of payments, click here.

    [/vc_column_text][vc_separator color=”grey” align=”align_center” style=”” border_width=”” el_width=””][/vc_column][/vc_row]


    Recommended

    Bank CEOs and Senators to Discuss Crypto Market Regulation

    Google Denies Report It Plans to Bring Ads to AI Chatbot Gemini

    Qatar Launches National AI Firm as Gulf Tech Investments Ramp Up

    Central Bank of Argentina Considers Letting Lenders Trade Crypto for Clients

    See More In: , , , ,