As part of a larger effort against financial and legal investment institutions in the Middle East and Europe, a hacker-for-hire gang known as Evilnum has begun to target travel businesses.
According to a technical report released this week by Kaspersky, the attacks, which took place between 2020 and 2021 and possibly as far back as 2015, involved a modified version of malware known as Janicab that makes use of a number of open sources such as WordPress and YouTube as dead drop resolvers.