As the summer season culminates and booking platforms are filled with thousands of offers for beaches and holiday destinations, cybercrime do not miss the opportunity to take advantage of the seasonal relaxation of users. New research by Check Point Research (CPR) records alarming increase in tourism -related online fraud, revealing that 1 in 21 new holiday websites may be malicious.

Only in May 2025, interruptions domain increased by 55% compared to the previous year, showing the high resonance of summer bookings and the range of digital traps. Cyberattacks are becoming increasingly complex, imitating famous platforms such as Airbnb and Booking.com. Through counterfeit payment pages, fake captcha and phishing emails, the perpetrators steal credit card details and install malicious software, endangering users and hospitality professionals.

Increase cyber thicks in the travel sector reveals new research by check Point Research

The travel and hotel industry is now at the center of attacks. According to the CPR, each organization in this area receives an average of 1,834 cyberattacks per week – an increase of 48% compared to last year and 78% over two years. Attackers are no longer limited to classic methods, but use artificial intelligence tools to create personalized and more convincing fraudulent messages.

Examples of fraud

A typical example is the release of a false domain that mimics Airbnb’s payment page, seeking to intercept sensitive financial elements. At the same time, the use of the ClickFix model was recorded to introduce Remote Access Trojan (RAT) via false captcha to booking.com, allowing hackers to gain remote access to accommodation owners.

Fake emails, leading to phishing, reinforced with artificial intelligence and presenting a variety of graphics and themes, making them difficult to identify.

The CPR points out that booking platforms and travelers must boost their attention, especially during the summer peak season. The use of public wi-fi networks, the rush to last-minute bookings and the reduced monitoring of electronic messages create ideal conditions for attacks.

“Cybercriminals know that during the rush period of travel, people are loosened. They plan their scams to look perfectly legal, with logos and fake connection screens, making it extremely easy to fall into their trap. “

Recommendations

The CPR recommends the intersection of domain with formal lists, the avoidance of connection to bank or other sensitive bills via public Wi-Fi, and the use of two-factor authentication. Particular attention is needed in offers that look too good to be true, especially when they come from new or non -verified websites.

“The travel sector must also take action. Hosting providers should incorporate security checks into their systems and train their staff to identify digital threats. Security is no longer just a technical issue; it is part of the confidence that every tourism business offers to its customers, ”concludes cyber security.