Skip to main content
  1. Home
  2. Computing
  3. News

Beware of hotel Wi-Fi — Russian hackers are stealing information from it

By

russia hotel wi fi hack hacking hacker lifestyle pc keyboard
pwstudio/123RF
Hotel guests already have enough anxiety-inducing fodder to make their stays a bit less than desirable. From the odd stain on the carpet to the questionable bedspread to the toilet that just won’t stop flushing (or won’t flush at all), there are plenty of reasons to think twice about even the nicest of temporary residences. And now, there’s one more.

As per a new report from security firm FireEye, a Russian hacker group called APT28, or Fancy Bear, has been targeting hotel Wi-Fi networks to spy on guests. And in recent months, the group has reportedly begun to use a leaked NSA hacking tool to make their attacks more sophisticated still.

Recommended Videos

“FireEye has moderate confidence that a campaign targeting the hospitality sector is attributed to Russian actor APT28,” the firm wrote. “We believe this activity, which dates back to at least July 2017, was intended to target travelers to hotels throughout Europe and the Middle East.”

Please enable Javascript to view this content

Perhaps most alarming is the discovery that once hackers succeeded in tapping into hotel Wi-Fi, they managed to take guests’ usernames and passwords completely passively. In fact, guests didn’t even have to type in their sensitive data to have it stolen.

“It’s definitely a new technique,” Ben Read, the leader of FireEye’s espionage research team told Wired. “It’s a much more passive way to collect on people. You can just sit there and intercept stuff from the Wi-Fi traffic.”

FireEye believes that the hackers managed to infiltrate hotel networks via phishing emails that contained infected attachments and malicious Microsoft Word macros. Once they were in a hotel Wi-Fi network, they would then launch NSA hacking tool EternalBlue, which was leaked earlier in 2017. This tool allowed them to spread their control throughout the network, finally reaching servers responsible for the corporate and guest Wi-Fi networks.

Finally, APT28 is said to have used a network-hacking tool known as Responder, which gave them access to user credentials.

And if you think you can avoid these sorts of attacks by staying at nicer hotels, think again. “These were not super expensive places, but also not the Holiday Inn,” FireEye’s Read said. “They’re the type of hotel a distinguished visitor would stay in when they’re on corporate travel or diplomatic business.”

So what can you do to protect yourself? FireEye recommends bringing your own wireless hot spot to steer clear of hotel Wi-Fi altogether. Just another thing you’ll have to remember to pack for your next trip.

Editors’ Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
The Dell G16 gaming laptop with RTX 4070 is $450 off right now
The Dell G16 7630 gaming laptop on a white background.

Gaming laptop deals that are truly worth buying usually don't come cheap, but if you look hard enough, you can find offers that will let you enjoy huge savings. Here's a great example: the Dell G16 with a $450 discount from Dell, which brings it down from $1,750 to a more reasonable $1,300. You're going to get amazing value at this price, but if you want to pocket the savings, you're going to have to rush into completing your purchase because we're not sure how much time is remaining before the bargain expires.

Why you should buy the Dell G16 gaming laptop
The Dell G16 gaming laptop is a pretty powerful device, as it runs on the 13th-generation Intel Core i9 processor, the Nvidia GeForce RTX 4070 graphics card, and 16GB of RAM. With these specifications, it won't have any trouble playing today's best PC games, and with its 1TB SSD, you'll have enough storage space for several AAA titles with all of their required updates and optional DLCs. The Dell G16 ships with Windows 11 Home, so you can start downloading and installing games right after unboxing.

Read more
The massive LastPass hack from 2022 is still haunting us
LastPass website on a laptop.

Just when you thought the LastPass breach of 2022 was over, we're still learning just how detrimental the hack was. According to blockchain expert ZachXBT and spotted by The Block, $5.36 million was stolen from 40 users in a string of attacks. This is on top of the $4.4 million stolen in October 2023 and $6.2 million earlier this year in February 2024.

The original hack goes back to 2022 when hackers claimed to have accessed LastPass' data, which contained API tokens, customer keys, multifactor authentication seeds (MFA), and encrypted password vaults. Although no official information explains how the breach happened, it's possible that the hacker responsible gained access to information that aided the breach. Hackers forced their way in despite the password vaults being encrypted because users reused weak or previously leaked combinations. This access, combined with the users' weak or reused passwords, led to the various accounts being compromised.

Read more
Apple Maps for web adds Look Around, its Street View-like feature
Apple Maps' Look Around feature on the web.

Apple launched Apple Maps for the web five months ago, but it was in beta and had limited features. As it gradually builds it up to become a serious competitor to Google Maps, Apple has now added Look Around, its own version of Street View that lets you explore your surroundings via panoramic imagery collected by camera-equipped cars, 9to5Mac reported. Look Around launched for Apple Maps' mobile and desktop versions in 2019, so it's great to see that it's finally made it to the web version.

You can use the Look Around feature on Apple Maps for the web by selecting the binoculars icon at the top right of the display. Similar to the Apple Maps desktop app, you click on the image to proceed along the street in a satisfyingly smooth way, or drag the picture around to survey your surroundings. When you launch it, the Look Around view only takes up a portion of the display, so as you move along the street, you can check the binoculars icon to keep track of your current position. You can also go full-screen by selecting the arrows on the Look Around viewer.

Read more