Microsoft has issued a warning regarding a phishing campaign known as ClickFix, which targets the hospitality sector through fake emails impersonating Booking.com. This campaign employs social engineering tactics that trick victims into copying and pasting commands that activate data-stealing malware. The threat has been highlighted by Microsoft Threat Intelligence, which notes that the campaign is sophisticated and specifically designed to exploit vulnerabilities within the hospitality industry. Additionally, the FBI and CISA have raised alarms about the rising activity of Medusa ransomware, which has reportedly affected over 300 critical infrastructure organizations as of February 2025. The ransomware attacks are part of a broader trend where threat actors are increasingly using generative AI tools to enhance their malicious capabilities, including phishing and malware development.