Security · 2h ago
Microsoft Warns of Node.js Malware in Hotel Phishing Campaign
A phishing campaign since April 2026 targets hotels in Europe and Asia with photo-themed ZIP files. The files drop a Node.js implant that compromises front-desk systems. Microsoft has not attributed the attacks or identified the attackers' goal.
Meridian48 take
The campaign's focus on hospitality suggests attackers are after guest data or payment systems, but the lack of attribution leaves open questions about the ultimate objective.
Read the full reporting
Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant →
The Hacker News
phishingnode-js-malware