August 19, 2024
Summer is a prime season for vacation travel, but if you're planning any last-minute trips, you should be aware of a new scam making the rounds. As the cost of everything from food to travel continues to rise, many people are turning to the internet to find the best deals for an affordable yet memorable getaway. Unfortunately, cybercriminals are exploiting this trend with a highly convincing, AI-generated phishing email that can end up costing victims far more than their vacation budget. According to Marnie Wilking, CISO at Booking.com, there has been a staggering 500% to 900% increase in travel-related scams over the past 18 months, driven by this malicious tactic.
How are these scammers pulling it off? While phishing emails have been around since the early days of the internet, AI tools like ChatGPT are now enabling the creation of realistic and professional-looking scam emails that are more likely to deceive recipients. In the past, phishing emails were often easy to spot due to spelling and grammatical errors. However, with the advent of AI, cybercriminals can now produce dozens of seemingly legitimate emails that often evade detection by both software and human readers.
Here's how the scam works:
Scammers exploit platforms like Booking.com or Airbnb.com, which allow users to list short-term rental properties. They send out emails offering incredible rates or time-sensitive deals on properties that don't actually exist. Once someone makes a payment, the scammers either disappear with the money, leaving the renter stranded, or continue to send follow-up emails to extract additional "fees" or "charges" before vanishing completely.
It's important to note that these vacation-focused phishing scams are not new. The difference now is that AI is making these emails more convincing, leading to a higher number of victims.
What can you do to protect yourself?
Vacationers can take several key steps to avoid falling victim to these scams:
- Use Two-Factor or Multi-Factor Authentication: Enable two-factor authentication where possible. Receiving a confirmation code on your phone each time you log in can help prevent phishing attacks and credential theft.
- Avoid Clicking on Email Links: If you receive an email promoting a deal that seems too good to be true, it probably is. Instead of clicking on the link, visit the website directly and search for the offer. If you can't find it, you might have just dodged a scam.
- Verify Property Listings: Before booking any property online, ensure that contact information and reviews are readily available. Check if other verified users have stayed at the property. If they have, it's less likely to be a scam.
- Use Credit Cards for Online Purchases: Avoid using debit cards linked directly to your bank account. If theft occurs with a debit card, recovering your money can be difficult, if not impossible. Credit cards offer an additional layer of protection.
Most importantly, stay vigilant. Scrutinize every email offer you receive and adhere to cybersecurity best practices. While standard security software can detect some scam emails, it often misses others. Therefore, it's crucial to remain cautious and look out for red flags.
Personal scams may
ruin a vacation, but business breaches can cost you and your family their
livelihood. To keep your network secure, call us at 952-941-7333 or click here to book a FREE consult with our cyber security experts, who can help you create a plan
that protects you. We are here to help! Enjoy a well-deserved break this
summer, and remember to be cybersmart.
