As millions of travelers prepare for summer vacations, cybersecurity researchers are warning that scammers are becoming increasingly sophisticated—and far more difficult to spot.
According to new research from travel eSIM provider Saily, using dark-web intelligence gathered by cybersecurity platform NordStellar, online discussions related to travel scams have surged in recent years. One of the most alarming findings shows that conversations about Airbnb scams have increased nearly 30-fold compared to the first half of 2023.
The shift highlights a growing trend among cybercriminals: rather than creating obviously fake websites or suspicious emails, scammers are increasingly infiltrating trusted travel platforms and legitimate accounts that consumers already rely on.
“Travel scams are becoming significantly harder to spot because criminals are increasingly abusing systems people already trust,” said Saily CEO Vykintas Maknickas.
One of the most concerning scams involves compromised hotel booking accounts. Researchers found growing evidence of hackers gaining access to hotel-side booking systems and using them to send payment requests directly to guests through legitimate-looking messaging platforms. Because these messages often appear within authentic reservation conversations, many travelers assume they are genuine.
Cybercriminals are also targeting travelers searching for mobile connectivity abroad. Researchers observed an increase in fake travel eSIM stores designed to steal payment information and personal data from tourists seeking affordable international data plans. Some fraudulent operations reportedly bundle fake eSIM services with phishing tools and other cybercrime resources.
Public Wi-Fi remains another major concern. Airports, hotels and cafés continue to be prime locations for criminals operating fake wireless networks that mimic legitimate connections. Unsuspecting travelers who connect to these networks risk exposing passwords, banking information and other sensitive data.
Adding to the challenge, researchers say deepfake technology is increasingly being used to bypass identity verification systems on travel-related platforms. Criminals are reportedly marketing services that use artificial intelligence-generated identities to gain access to accommodation, payment and ride-sharing accounts.
Perhaps the most troubling trend involves Airbnb-related fraud. Rather than creating fake host profiles, scammers are increasingly taking over legitimate host accounts that already have positive reviews, booking histories and verified status. Fraudulent listings posted through compromised accounts can appear authentic, making it far more difficult for travelers to identify warning signs.
Security experts recommend that travelers keep all communications and payments within official booking platforms, avoid clicking on payment links sent through messages, verify unusual requests directly with hotels and purchase travel services only through trusted providers.
They also encourage travelers to avoid conducting sensitive transactions over public Wi-Fi whenever possible.
As summer travel reaches its peak, experts warn that vigilance is more important than ever. The newest generation of travel scams doesn’t rely on obvious deception—it relies on trust, making awareness one of the strongest defenses travelers have.