publishing date icon
March 31, 2023
read time icon
5 min. read

"Available Reward" phishing email impersonates Booking.com

Author image
Hoxhunt
Threat Analyst Team
Post hero image

A phishing attack that has recently come to our attention is a devious campaign that claims an "available reward" can be claimed from Booking.com. This campaign is particularly concerning because it uses an identical copy of the actual Booking.com email template, which can easily fool even the most vigilant users.

What's even more alarming is the fact that the email appears to come from a legitimate source - in this case, a compromised email account. This is a common tactic used by phishers, who often hijack legitimate email accounts in order to lend an air of authenticity or bypass spam filter with their fraudulent campaigns.

Fortunately, there are some simple steps that users can take to protect themselves from this type of attack. One way to quickly check the legitimacy of an email is to look at the sender's domain. In this case, a closer inspection reveals that the email did not originate from Booking.com, as one might expect, but from a compromised email account.

Another red flag to watch out for is the link included in the email. If you hover over the link, you'll see that it doesn't lead to Booking.com, but to a completely different website. This is a clear indication that the email is a phishing attempt and should be immediately reported and deleted.

In order to protect yourself from phishing attacks, it's important to always be wary of unexpected emails, especially those that claim to offer rewards or require immediate action. Take the time to carefully inspect the email and verify that it's legitimate before clicking on any links or downloading any attachments.

By remaining vigilant and taking proactive steps to protect yourself, you can help ensure that your personal information remains safe and secure. So stay alert, be wary of unexpected emails, and don't let the phishers fool you!

Subscribe to All Things Human Risk

Subscribe to our newsletter for a curated digest of the latest news, articles, and resources on human risk and evolving phishing threats in the ever-changing landscape.

Hoxhunt needs the contact information you provide to us to contact you about our products and services. You may unsubscribe from these communications at anytime. For information on how to unsubscribe, as well as our privacy practices and commitment to protecting your privacy, check out our Privacy Policy.