Fraudulent Emails Target Hotel Staff with AsyncRAT Malware via Fake CAPTCHA

Fraudulent emails impersonating Booking.com are targeting hotel staff, enticing them to execute the AsyncRAT malware through a fake CAPTCHA. This attack aims at systems with remote access. The emails contain a link to a malicious webpage that asks users to solve a CAPTCHA to access a fictitious reservation. By clicking on the CAPTCHA, users download and execute AsyncRAT, a Remote Access Trojan (RAT) that allows attackers to take control of infected systems.