RevengeHotels: AI-Powered Cybercrime Group Targets Hotels
A long-standing cybercrime group, known for targeting hotels, has been employing advanced tactics to enhance its malicious activities. Active since 2015, the group, dubbed 'RevengeHotels', has been stealing payment card data and is now leveraging AI to refine its attacks.
RevengeHotels initiates its attacks through phishing emails, cleverly disguised as invoices or job applications. Once the initial intrusion is successful, the group deploys 'VenomRAT', a remote access trojan, to infiltrate systems and steal sensitive data. VenomRAT, available for up to $650 on underground forums, offers functionalities like credential theft and data exfiltration.
To evade detection, the group frequently rotates its domains and payloads. This adaptability, coupled with the use of large language models (LLMs) to generate cleaner, more structured malicious code, makes RevengeHotels a formidable threat. In 2021, the group collaborated with an unidentified hacker to launch attacks in Brazil and other countries, indicating a growing sophistication in its operations.
Brazil has been the primary target of RevengeHotels, with recent phishing emails written in Spanish suggesting an expansion into other countries.
RevengeHotels' use of AI and large language models underscores the evolving nature of cyber threats. As the group continues to adapt and expand its targets, it is crucial for cybersecurity measures to keep pace with these advanced tactics.
Read also:
- State Supreme Court Rules in Favor of Hogg Hummock Residents, Referendum on Zoning Change to Proceed
- chaos unveiled on Clowning Street: week 63's antics from 'Two-Tier Keir' and his chaotic Labour Circus
- Budget discrepancy jeopardizes highway projects' financial support
- Racing ahead in Renewable Energy Dominance: Changzhou, Jiangsu Pushes for Worldwide Renewable Energy Ascendancy
