Dark Web Analysis Unveils Airline and Hotel Cybercrime Threats
A recent investigation has scrutinized airline, hotel, and travel-related interactions on the dark web, revealing that prominent global and U.S.-based airlines—including American Airlines, Southwest, Emirates, United, Alaska, and Delta—account for over fifty percent of discussions regarding cybercrime on these clandestine forums.
Loyalty program accounts stand out as the most coveted assets, frequently subject to theft or illicit sale. Phishing scams emerge as a predominant method for infiltrating customer data, encompassing credentials and login details.
Additionally, data breaches that uncover extensive customer information constitute another tactic favored by cybercriminals.
Once sensitive data has been procured, it facilitates the booking of flights that are free, cashless, and nearly impossible to trace—utilizing the accounts of travelers who possess substantial loyalty points, often valued at thousands of dollars.
“The travel sector presents an enticing target for hackers due to the extensive personal and financial information it manages. Our findings indicate that airlines are persistently vulnerable to data breaches, with stolen information finding a robust market on the dark web,” stated Marijus Briedis, Chief Technology Officer of NordVPN.
“Consumers must fortify their account security, especially during peak travel seasons when criminals are particularly active,” Briedis cautioned.
However, airlines are not the sole victims in this escalating threat landscape; hotel scams are also on the rise.
The report highlights that global hotel giant Marriott constituted thirty-five percent of dark web mentions related to hotels, alongside notable chains such as Accor, Hilton, and IHG.
Cybercriminals accessing customer data via similar schemes employed against airlines pose a significant risk of leaking high-value personal information, including names, email addresses, and potentially even passport numbers, with such data selling for as much as $3,000.
“The valuation of stolen databases transcends mere volume; it is driven instead by the sensitivity of details such as passport numbers, loyalty points, or information tied to high-profile establishments,” explained Vykintas Maknickas, CEO of Saily.
“High-value data substantiates elevated prices, driving cybercriminals to target entities within the travel industry with greater fervor,” Maknickas added.
Both Saily and NordVPN have issued stern warnings to travelers and customers, urging ongoing vigilance during the bustling travel season. Simple cyber safety protocols—including regularly updating passwords and enabling multi-factor authentication—are deemed essential.
“Review your accounts prior to and following travel. The act of traveling inherently heightens exposure as you engage with your accounts more frequently, often over untrusted networks. Utilizing a travel eSIM may also mitigate these risks,” advised Maknickas.
Source link: Cybersecurityconnect.com.au.
