Indian Hotels Being Targeted by Russian Hacking Group for User Data: FireEye

Advertisement
By Indo-Asian News Service | Updated: 14 August 2017 17:33 IST
Highlights
  • APT28 is targeting the hospitality sector globally
  • APT28 uses various hacking techniques such as "EternalBlue"
  • "Indian organisations should have strong security controls in place"

A Russian hacking group "APT28" is targeting the hospitality sector globally and the Indian hotels and resorts must have strong Wi-Fi security in place to safeguard travellers' data from being stolen, a cyber-security company said on Friday.

APT28 has already attacked travellers in hotels throughout Europe and the Middle East in a campaign that dates back to July this year, according to the US-based company FireEye.

Advertisement

APT28 uses various hacking techniques, such as "EternalBlue" and "Responder" sniffing passwords from Wi-Fi traffic.

"One of the most concerning aspects of this operation is the victims included hotel guests who didn't do anything wrong. They didn't click a malicious link or open an attachment they shouldn't have. They simply used the Internet over Wi-Fi in their hotels," Subhendu Sahu, Acting Country Manager for India, FireEye, told IANS.

"Indian organisations should have strong security controls in place to detect attackers who compromise travelling employees' systems and then follow them home like an unwanted souvenir," Sahu added.

FireEye has claimed to have found a malicious document named "Hotel_Reservation_Form.doc", sent in spear phishing emails to multiple companies in the hospitality industry, including hotels in at least seven European countries and one Middle Eastern country.

Advertisement

APT28 used EternalBlue and Responder to spread laterally through networks and target travellers to steal usernames and hashed passwords.

According to FireEye, APT28, in an incident in 2016, gained initial access to a victim's network via credentials likely stolen from the hotel Wi-Fi network and hacked the victim's Outlook Web Access (OWA) account.

Advertisement

Once inside the network of a hospitality company, APT28 seeks machines that control both guest and internal Wi-Fi networks.

"Cyber espionage activity against the hospitality industry is typically focused on collecting information on or from hotel guests of interest rather than on the hotel industry itself, though actors may also collect information on the hotel as a means of facilitating operations," FireEye said.

Advertisement

"Business and government personnel who are travelling often rely on systems to conduct business other than those at their home office, and may be unfamiliar with threats posed while abroad," it added.

Travellers must be aware of the threats especially when in foreign countries and take extra precautions to secure their systems and data.

"Publicly accessible Wi-Fi networks present a significant threat and should be avoided whenever possible," FireEye warned.

There are also other hacking groups targeting travellers apart from APT28, including "South Korea-nexus Fallout Team" (also known as "Darkhotel") and "Duqu 2.0".

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. Amazon Prime Day 2026: Best Deals on Fire TV Stick and Streaming Devices
  2. Amazon Prime Day Laptop Deals: Best Discounts on HP, Asus, Lenovo and More
  3. Everything We Know About the Nothing Phone 4b
  4. Best Gaming Laptops Under Rs. 80,000 in India
  5. Amazon Prime Day 2026: 55-inch Smart TV Deals from Lumio, Samsung and More
  6. Best Camera Phones Under Rs. 30,000 for Content Creators in India
  1. Amazon Prime Day 2026 Laptop Deals: Best Discounts on HP, Asus, Lenovo, Dell, Acer Models
  2. Best Camera Phones Under Rs. 30,000 for Content Creators in India: Motorola Edge 70 Fusion, Galaxy F56, More
  3. Boat Stone 900 Launched in India With Up to 80W Sound Output, Up to 15 Hours Audio Playback: Price, Features
  4. Cyberpunk 2077 Has Sold 40 Million Copies, CD Projekt Red Confirms
  5. Nothing Phone 1 Receives Final Software Update With Latest Security Patches, Bug Fixes and Improvements
  6. Nokia 235 4G (2026), 215 4G (2026) Launched Alongside Nokia 210 4G, and 200 4G With AI Assistant Button
  7. Samsung Galaxy S27 Ultra Battery Details Leaked; Could Top iPhone 18 Pro Max's Battery Capacity
  8. OnePlus Ace 7 Series Tipped to Feature 185Hz Display, 9,000mAh Battery
  9. WhatsApp Rolls Out Primary Device Support on iPad, Tests New Setup Screen for Android Tablets: Report
  10. Government Directs App Stores to Remove Malicious Apps Used to Disrupt E-Rickshaw Operations: Report
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.