Never miss a story

Get subscribed to our newsletter


×
Travellers must take extra precautions to secure their systems and data when in foreign countries. Pixabay
  • APT28 has already attacked travellers in hotels throughout Europe and the Middle East
  • APT28 uses various hacking techniques, such as “EternalBlue” and “Responder” sniffing passwords from Wi-Fi traffic
  • Indian organisations must have strong security controls in place to detect attackers

India, August 12, 2017: A Russian hacking group “APT28” is targeting the hospitality sector globally and the Indian hotels and resorts must have strong Wi-Fi security in place to safeguard travellers’ data from being stolen, a cyber security company said on Friday.

APT28 has already attacked travellers in hotels throughout Europe and the Middle East in a campaign that dates back to July this year, according to the US-based company FireEye.


APT28 uses various hacking techniques, such as “EternalBlue” and “Responder” sniffing passwords from Wi-Fi traffic.

Also read: China-based hacker group now targeting IT service providers and manufacturing companies in India: US-based cyber security group FireEye

“One of the most concerning aspects of this operation is the victims included hotel guests who didn’t do anything wrong. They didn’t click a malicious link or open an attachment they shouldn’t have. They simply used the Internet over Wi-Fi in their hotels,” Subhendu Sahu, Acting Country Manager for India, FireEye, told IANS.

“Indian organisations should have strong security controls in place to detect attackers who compromise traveling employees’ systems and then follow them home like an unwanted souvenir,” Sahu added.

FireEye has claimed to have found a malicious document named “Hotel_Reservation_Form.doc”, sent in spear phishing emails to multiple companies in the hospitality industry, including hotels in at least seven European countries and one Middle Eastern country.

APT28 used EternalBlue and Responder to spread laterally through networks and target travelers to steal usernames and hashed passwords.

According to FireEye, APT28, in an incident in 2016, gained initial access to a victim’s network via credentials likely stolen from the hotel Wi-Fi network and hacked the victim’s Outlook Web Access (OWA) account.

Once inside the network of a hospitality company, APT28 seeks machines that control both guest and internal Wi-Fi networks.

“Cyber espionage activity against the hospitality industry is typically focused on collecting information on or from hotel guests of interest rather than on the hotel industry itself, though actors may also collect information on the hotel as a means of facilitating operations,” FireEye said.

“Business and government personnel who are traveling often rely on systems to conduct business other than those at their home office, and may be unfamiliar with threats posed while abroad,” it added.

Travelers must be aware of the threats especially when in foreign countries and take extra precautions to secure their systems and data.

“Publicly accessible Wi-Fi networks present a significant threat and should be avoided whenever possible,” FireEye warned.

There are also other hacking groups targeting travellers apart from APT28, including “South Korea-nexus Fallout Team” (also known as “Darkhotel”) and “Duqu 2.0”. (IANS)


Popular

Unsplash

masks do not fit properly, the risk of infection rises to roughly 4%

Even at two metres distance, it takes less than five minutes for an unvaccinated person standing in the breath of a person with Covid-19 to become infected with almost 100 per cent certainty. But, if both are wearing well-fitting medical masks, the risk drops dramatically, finds a study.

In a comprehensive study, a team from the Max Planck Institute for Dynamics and Self-Organization in Gottingen showed that if both the infected and the non-infected person wear well-fitting masks, the maximum risk of infection after 20 minutes is hardly more than one per thousand, even at the shortest distance.

Follow NewsGram on Quora Space to get answers to all your questions.

If their masks fit poorly, the probability of infection increases to about four per cent. If both wear well-fitting medical masks, the virus is likely to be transmitted within 20 minutes with a maximum probability of ten per cent.

The study also confirms the intuitive assumption that for effective protection against infection, in particular. the infected person should wear a mask that filters as well as possible and fits tightly to the face.

"We would not have thought that at a distance of several metres it would take so little time for the infectious dose to be absorbed from the breath of a virus carrier," said Eberhard Bodenschatz, Director at the Max Planck.

Keep Reading Show less
Wikipedia

CSI at its 73rd conference in Hyderabad has released a video featuring India's former cricket captain Kapil Dev and a book about the common things in cardiology written by 150 cardiologists.

By Mohammed Shafeeq

Heart health of every person is in his hands and if people adopt good diet, healthy lifestyle, do some exercises and avoid smoking they can very well prevent a large number of heart diseases, says Cardiological Society of India (CSI) president Dr P.P. Mohanan.

Keep Reading Show less
Wikipedia

Set up in 1958 as the country's second IIT -- after IIT Kharagpur (IIT-KGP, 1950) in the list of 23 IITs currently, IIT-B enters the momentous diamond jubilee year of its historic first convocation held on December 22, 1962.

By Quaid NajmiMumbai

Set up in 1958 as the country's second IIT -- after IIT Kharagpur (IIT-KGP, 1950) -- in the list of 23 IITs currently, IIT-B enters the momentous diamond jubilee year of its historic first convocation held on December 22, 1962, when around 70 wide-eyed young men passed out of the institute.

Keep reading... Show less