Cybersecurity researchers at Netcraft have uncovered a massive campaign in which a Russian-speaking threat actor registered more than 4,300 domains designed to trick people booking or preparing for holiday travel. These fake pages impersonate well-known travel brands like Airbnb and Booking.com, luring travelers with emails that urge them to “confirm” a reservation, then stealing their credit card information. The attackers use polished booking-style pages, bogus customer-service chats, and realistic redirects to convince victims they’re paying a deposit for an upcoming trip. Travelers: avoid clicking reservation links in emails, double-check hotel URLs, and never enter payment information unless you’re sure you’re on the real site.

Via Netcraft