The Growing Threat of Cybercrime in Travel
As the world embraces the revival of travel, there’s an unsettling increase in cybercriminal activities aimed at travelers. Recent findings highlight a burgeoning underground market for stolen travel documents, such as passport scans and airline loyalty program accounts, particularly on the dark web.
Shocking Prices for Stolen Identities
A collaborative study by NordVPN and Saily has shed light on the alarming ease with which these personal data can be bought. Their analysis, conducted in June 2025, utilized the NordStellar platform to probe listings on various dark web marketplaces and hacker forums. The results are startling: scanned passports can be sold for as low as $10, while verified passports from the EU can fetch upwards of $5,000. In addition to these, fake bank statements, visa stickers, and hacked airline accounts—often carrying millions of loyalty miles—can all be traded for substantial sums. Even hotel reservations from platforms like Booking.com are resold for remarkable discounts, sometimes exceeding $250.
Marijus Briedis, Chief Technology Officer at NordVPN, underscores the gravity of the situation: "The staggering prices we’re seeing on the dark web show just how valuable and vulnerable travelers’ personal information has become."
How Cybercriminals Obtain Travel Data
The methods by which travel documents fall into the hands of cybercriminals are alarmingly straightforward. Malware can infiltrate devices and cloud storage, scanning for sensitive files. High-profile breaches at airlines, visa platforms, and travel agencies frequently result in the leakage of passenger information.
Phishing websites are another vector, often masquerading as official sites to trick users into uploading vital documents. Even improperly secured cloud storage can be easily exploited. Additionally, physical documents, such as boarding passes that are lost or discarded at airports, also pose a risk, further feeding the underground market.
Vykintas Maknickas, CEO of Saily, warns that travelers are increasingly facing sophisticated AI-driven phishing scams. These range from fake check-in platforms requesting selfies alongside ID documents to fraudulent pages for airport lounge access and Wi-Fi registration. "With AI tools now easily accessible to criminals, these phishing attempts are not only convincing but hard to discern as fake," he states.
The High Stakes of Travel Documents
Travel documents hold immense value for hackers, not just because of their resale potential, but due to their versatility in usage. Many online platforms require merely a passport scan and a selfie for identity verification, processes that criminals can easily bypass using advanced deepfake technology.
When hackers obtain stolen passenger data, they don’t just get names and passport numbers. They also gain access to date of birth, email addresses, phone numbers, and emergency contacts—all of which facilitate complex fraudulent activities. This information can be used for identity theft, opening fraudulent accounts, or even applying for loans. Such data also enhances phishing attacks and social engineering schemes that target victims and their personal networks.
Briedis remarks, "Travel documents are a goldmine for hackers because they provide direct access to your identity with minimal barriers. The value and danger of stolen travel data cannot be overstated."
Protecting Your Travel Information
Given the rising threat level, both NordVPN and Saily encourage travelers to take immediate steps to protect their data. Storing sensitive travel documents in encrypted digital vaults, rather than publicly accessible cloud folders, is crucial. Awareness and vigilance against phishing scams are paramount; always verify URLs before entering any information.
Maknickas advocates for a skeptical mindset as the best defense against modern social engineering attacks. "A moment of critical thinking before responding to any digital request can serve as your strongest protection. If something feels off, take the time to validate the communication through other channels."
Additionally, Briedis recommends keeping devices equipped with updated antivirus software and utilizing VPNs on public Wi-Fi networks to maintain the confidentiality of online activities. Regular monitoring of financial and loyalty accounts is vital for detecting any suspicious activity early, and reporting lost or stolen documents promptly is essential to minimizing exposure to identity theft.
In this evolving digital landscape, staying informed and vigilant has never been more critical for today’s travelers.
