www.darkreading.com 6/30/2026, 7:31:58 PM · external

Hospitality firms hit by photo zip phishing using blockchain RAT

Hospitality firms hit by photo zip phishing using blockchain RAT
Developing story malware 2 articles tracked
Hospitality sector targeted by TonRAT phishing campaign via malicious ZIP files
CyberSIXT Evidence Panel
Primary Source microsoft.com

THE article discusses recent phishing campaigns targeting hospitality organizations in Europe and Asia, as observed by researchers from Microsoft and Trend Micro. Attackers use malicious zip files disguised as guest photos to install malware and gain persistent access to systems. The campaigns exploit social engineering tactics, impersonating guests with complaints to lure victims into downloading harmful content.

Microsoft highlighted methods like 'authentication laundering' to bypass email security, while Trend Micro pointed out the use of TONResolver, a remote access Trojan leveraging blockchain for command and control. Emphasis is placed on the need for enhanced security measures in the hospitality sector to counter these evolving threats.

View Primary Source Via www.darkreading.com

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline