ioc[.]one - OSINT Cyber Threat Intelligence Database

Cybercriminals Leverage Hijacked Booking.com accounts for Phishing

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Email Account - T1087.003 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566

Show in Graph

Common Information

Type	Value
UUID	f5e4d34f-f5e9-4553-8d33-47acfd47013e
Fingerprint	b8159792880b54e3
Analysis status	DONE
Considered CTI value	0
Text language
Published	Dec. 3, 2023, 11:13 a.m.
Added to db	Aug. 31, 2024, 12:16 a.m.
Last updated	Nov. 17, 2024, 1:57 a.m.
Headline	@BushidoToken Threat Intel
Title	Cybercriminals Leverage Hijacked Booking.com accounts for Phishing
Detected Hints/Tags/Attributes	27/2/17

Source URLs

	Redirection	Url
Details	Source	https://blog.bushidotoken.net/2023/12/cybercriminals-leverage-hijacked.html

URL Provider

Details	Provider	Source level domain
Details	bushidotoken.net	blog.bushidotoken.net

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	24	✔	@BushidoToken Threat Intel	https://blog.bushidotoken.net/feeds/posts/default?alt=rss	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	87		booking.com
Details	Domain	110		www.reddit.com
Details	Domain	268		www.virustotal.com
Details	Domain	1		booking.id24144379.date
Details	Domain	154		urlscan.io
Details	Domain	98		www.secureworks.com
Details	Domain	3		www.curatedintel.org
Details	Domain	1		g0njxa.medium.com
Details	File	1		id24144379.dat
Details	File	1		curated-intel-threat-report-multi.html
Details	IPv4	1		91.215.40.30
Details	Url	1		https://www.reddit.com/r/travel/comments/163icx6/urgent_warning_phishing_through_bookingcoms
Details	Url	1		https://www.virustotal.com/gui/domain/booking.id24144379.date/detection
Details	Url	1		https://urlscan.io/ip/91.215.40.30
Details	Url	1		https://www.secureworks.com/blog/vidar-infostealer-steals-booking-com-credentials-in-fraud-scam
Details	Url	1		https://www.curatedintel.org/2023/12/curated-intel-threat-report-multi.html
Details	Url	1		https://g0njxa.medium.com/un-booking-a-scam-8f8058eb7200