The Rising Threat of Cyber Crime in the Travel Industry
Dark Web Insights: Airlines Under Scrutiny
Recent investigations into dark web activities have provided alarming insights into cyber crime targeting the travel sector. Major airlines, including American Airlines, Southwest, Emirates, United, Alaska, and Delta, accounted for more than half of the discussions related to airline cyber attacks on dark web forums. This trend underscores the vulnerability of online travel services and the sensitive information they manage.
Loyalty Programs: Prime Targets for Hackers
One of the most valuable assets being targeted in these cyber attacks is loyalty program accounts. Cyber criminals often employ phishing scams to gain unauthorized access to customer information, credentials, and log-in details. Additionally, data breaches that expose broader customer personal data have become common tactics for these malicious actors.
Once thieves obtain this sensitive data, they can exploit it to book flights that are difficult to trace. This is particularly concerning for travelers who have accumulated significant loyalty points, which can be worth thousands of dollars. Such easy access to lucrative rewards makes the travel industry a prime target for cyber crime.
Cyber Security Expert’s Take
Marijus Briedis, Chief Technology Officer at NordVPN, aptly highlighted the risks: “The travel industry is a lucrative target for hackers due to the sensitive personal and financial data they handle. Our research shows that airlines continue to face data breaches, and this stolen information has a thriving market on the dark web.” He emphasizes the need for consumers to bolster their account security, especially during peak travel seasons when scammers are most active.
Hotel Chains Also at Risk
Airlines are not the only sector feeling the pressure; hotel chains are experiencing a surge in cyber attacks as well. The analysis revealed that global hotel chain Marriott represented 35% of dark web mentions concerning hotels. Other notable names like Accor, Hilton, and IHG are also in the crosshairs of cyber criminals.
Scammers utilize similar tactics as those aimed at airlines, gaining access to sensitive customer data such as names, email addresses, and often passport numbers. The value of this information is staggering, with prices on the dark web reaching up to $3,000 for high-value data points.
What Determines the Value of Stolen Data?
The high value associated with stolen databases isn’t simply a matter of volume; it’s the sensitivity of the details that drives pricing. Vykintas Maknickas, CEO of Saily, explained, “What drives the value are sensitive details like passport numbers, loyalty points, or information linked to places or organisations that attract extra attention.” This focus on sensitive data, such as loyalty program information, increases the risks for consumers.
Staying Vigilant: Tips for Travelers
Given this heightened risk environment, both Saily and NordVPN experts urge consumers to be vigilant during busy travel periods. Simple security measures can significantly reduce vulnerabilities. Changing passwords regularly and enabling multi-factor authentication are key steps that travelers should take.
“Check your accounts before and after a trip,” Maknickas advises. “Traveling can increase your exposure as you access accounts more frequently, often over less secure networks.” He also suggests considering a travel eSIM to minimize risks associated with public networks.
Conclusion
The travel sector remains a lucrative target for cyber criminals, with both airlines and hotels facing significant threats. Strengthening security protocols and being alert to potential scams are essential for safeguarding personal information and preventing unauthorized activity. As travel continues to rebound, the importance of cyber safety measures cannot be overstated.
