In continuation of the publications concerning the cyber-attacks targeting hotels and customers carried out with sophisticated methods, using the Booking.com extranet, we publish the recent announcement of Check Point, which states that the leisure and hospitality sector experienced an average of 1.000 weekly cyberattacks per organization in the third quarter of 2023, a 5% increase over the previous year. This alarming trend highlights the urgent need for strong cybersecurity measures in the industry.
Navigating the Cyberstorm
In the digital age, the tourism industry faces a unique set of challenges. While businesses and travelers focus on creating and enjoying travel experiences, a less visible but equally significant threat lurks in the shadows: cyber attacks. The recent surge in these attacks underscores the need for increased awareness and preventative measures.
According to Check Point Research (CPR), the leisure and hospitality sector experienced an average of 1.000 weekly cyberattacks per organization in the third quarter of 2023, a 5% increase over the previous year. This alarming trend highlights the urgent need for strong cybersecurity measures in the industry.
A recent scam aimed at Booking.com, which has been reported by Secureworks, exemplifies the sophistication of these cyber threats. In this scam, customer details were stolen and put up for sale on dark web, revealing the vulnerabilities that travelers and businesses face in the digital world.
Different tactics of cybercriminals
Η Booking.com is a high-profile target that has been on the radar of cybercriminals in recent months, and Check Point's team at CPR has found multiple examples to support that claim. The first one shared below relates to the plan described above, while the rest provide more information about her targeting Booking.com by cybercriminals:
Malware via reservations: What CPR has discovered looks like the first step of a scheme on a messaging forum – aimed at infecting hotels with malware. It has been described as "the most popular job these days". The plan is to book accommodation through her Booking.com and then sending a malicious file through a messaging system, aiming to infect these hotels. In the ad below, the cybercriminal is recruiting people for this job:
Insider collaborations: A cyber criminal is looking for hosts on Booking.com for a possible malicious "collaboration" in the form of an inside job. The actual actor or attack plan has not been disclosed, but may be related to the reported plan:
Phishing Kits: A cybercriminal has created a phishing kit specifically targeting the service Booking.com. The kit was published as a gift to the Russian cybercrime community:
Fake host accounts: A cybercriminal is looking for a developer to create a software that creates fake hosting accounts and uploads fake accommodations to Booking.com:
Behind these statistics and cases are real people – travelers who trust their personal information to booking platforms and businesses that strive to provide secure services. For travelers, staying safe means being cautious about sharing personal information and verifying the authenticity of booking platforms. For businesses, this means investing in advanced cybersecurity measures and constantly updating digital security strategies.]
These cybersecurity challenges have far-reaching implications for the tourism industry. They affect consumer confidence, the reputation of brands and the financial stability of businesses in this market. As the tourism industry continues to navigate the cyber storm, awareness and preparedness are key.
This requires a collaborative effort between businesses, cybersecurity experts and consumers to ensure that the journey, both physical and digital, remains safe and enjoyable for everyone.