Hospitality Industry Faces New Password-Stealing Malware

Cybersecurity researchers from Sophos X-Ops have discovered a targeted malspam operation deploying password-stealing malware using social engineering tactics. The attackers send complaints or information requests to establish trust, before sharing malware hidden in password-protected archive files. The large files, designed to evade detection, connect to a Telegram channel for command-and-control purposes, exfiltrating data without establishing persistence on the host machine.