Summer is a prime season for vacation travel, and if you're planning any last-minute trips, be cautious of a new scam making the rounds. With rising costs for everything from food to travel, it's natural to hunt for the best online deals to plan an affordable yet memorable getaway. However, according to Booking.com, cybercriminals are exploiting this trend with a highly convincing, AI-generated phishing email that can cost victims far more than their vacation budget. Marnie Wilking, Chief Information Security Officer at Booking.com, reports a staggering 500% to 900% increase in travel-related scams over the past 18 months, driven by this malicious tactic.
So, how are these scammers operating? While phishing emails have been around since the early days of the Internet, AI tools like ChatGPT are now enabling the creation of realistic and professional scam emails that are harder to detect. Previously, phishing emails were often easy to spot due to spelling and grammatical errors. With AI, cybercriminals can generate dozens of seemingly legitimate emails that frequently slip past both software filters and human scrutiny.
Here's their method:
Scammers exploit platforms like Booking.com or Airbnb.com, where individuals list properties for short-term rentals. They send out emails offering incredible rates or time-sensitive deals on fake properties. Once someone pays, the scammers either vanish with the money, leaving the renter stranded, or send follow-up emails to extract additional "fees" or "charges" before disappearing.
It's important to note that these vacation-themed phishing scams are not new. The difference now is that AI is making these emails more convincing, leading more people to fall for them.
What can you do to protect yourself?
Vacationers can take several crucial steps to avoid being scammed:
- Use Two-Factor or Multi-Factor Authentication: Whenever possible, enable two-factor authentication. Receiving a confirmation code on your phone each time you log in adds an extra layer of security against phishing attacks and credential theft.
- Avoid Clicking on Email Links: If you receive an email promoting a deal that seems too good to be true, it probably is. Instead of clicking on the link, visit the website directly and search for the offer. If you can't find it, you might have dodged a scam.
- Verify Property Details Before Booking: Ensure that contact information and reviews are readily available for any property you consider booking online. If other verified users have stayed at the property, it's less likely to be a scam.
- Use Credit Cards for Online Purchases: Avoid using debit cards linked directly to your bank account. In the event of theft, recovering money from a debit card can be difficult, if not impossible. Credit cards offer an additional layer of protection, making it easier to dispute fraudulent charges.
By following these steps, you can significantly reduce your risk of falling victim to these increasingly sophisticated vacation scams.
The most important thing is to stay vigilant. Analyze every e-mail offer you receive and follow cyber security best practices. Standard security software can help detect some of these scam e-mails, but often not all of them, so it's important to be cautious and look for red flags.
Personal scams may
ruin a vacation, but business breaches can cost you and your family their
livelihood. To keep your network secure, call us at (610) 433-1000 or click here to book a FREE Call With Our Owners, who can help you create a plan
that protects you. We are here to help! Enjoy a well-deserved break this
summer, and remember to be cybersmart.