Security News > 2025 > March > Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails
![Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails](/static/build/img/news/microsoft-warns-of-clickfix-phishing-campaign-targeting-hospitality-sector-via-fake-booking-com-emails-medium.jpg)
2025-03-13 15:26
Microsoft has shed light on an ongoing phishing campaign that targeted the hospitality sector by impersonating online travel agency Booking.com using an increasingly popular social engineering technique called ClickFix to deliver credential-stealing malware. The activity, the tech giant said, started in December 2024 and operates with the end goal of conducting financial fraud and theft. It's
News URL
https://thehackernews.com/2025/03/microsoft-warns-of-clickfix-phishing.html
Related news
- Tycoon2FA phishing kit targets Microsoft 365 with new tricks (source)
- Phishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft (source)
- Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins (source)
- Phishing emails delivering infostealers surge 84% (source)
- Microsoft fixes machine learning bug flagging Adobe emails as spam (source)
- Microsoft fixes Exchange Online bug flagging Gmail emails as spam (source)
- CoGUI phishing platform sent 580 million emails to steal credentials (source)
- Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails (source)
- Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages (source)