An alarming post on X (formerly Twitter) by Wendy Knowler (@wendyknowler), South Africa’s leading consumer journalist, has brought to light the constant and increasing risk of cybercrime in the context of travel planning. Ms. Knowler shared a cautionary tale involving a South African woman who fell victim to a sophisticated phishing scam while making travel arrangements.
I’ve just received an email from a S. African woman who was caught by this.
The fraudulent email came amid a stream of genuine https://t.co/DWEn2V5aWz emails about her UK booking.
She lost >R18K.@bookingcom sent her a warning email but it landed AFTER the scammers’ ones. 😡 https://t.co/co0c7Xc4Nl— Wendy Knowler (@wendyknowler) August 26, 2024
You can’t let your guard down for a moment. The truth is that most cybersecurity breaches these days take the form of phishing-based social engineering. Why break through thick firewalls or try to hack complex passwords when you can simply get someone to hand you the keys to their data and money? Scammers only need to find one cybersecurity gap for your trip to become far more expensive than you’d anticipated.
There are several parties involved from banks to booking agents to online platforms to airlines. Booking flights or accommodations online often requires entering personal information on multiple platforms, each with its own level of security. Each interaction creates a potential entry point for cybercriminals, who can exploit these vulnerabilities to access or steal crucial data. If even one of these platforms is compromised, your travel itinerary, including payment details, could be exposed to significant risk.
It doesn’t get much safer once you’re traveling. Accessing the Internet while on the move —whether to check emails, manage bookings, or handle banking transactions —poses additional threats, especially if you’re using unsecured public Wi-Fi networks. Cybercriminals can easily intercept data or deploy phishing schemes to steal your credentials.
See also: Techniques hackers employ to exploit public Wi-Fi and compromise your sensitive data
To help travelers protect their personal information, ESET has published a guide on recognizing and avoiding phishing scams outlining essential strategies to prevent phishing attacks.
How to recognize phishing
Phishing messages often mimic legitimate correspondence but can be identified through several telltale signs:
- Requests for personal information: Reputable organizations rarely ask for sensitive details via email.
- Poor grammar: Spelling mistakes and awkward phrasing are common in phishing emails.
- Unexpected contact: Unsolicited emails from banks or service providers should be treated with suspicion.
- Urgency or irresistible offers: Messages that push for immediate action or offer deals that seem too good to be true are often scams.
- Suspicious domain names: Be wary of emails from domains that don’t match the organization’s official website.
How to prevent phishing
- Think before you click: Avoid clicking on links or downloading attachments from suspicious messages. These could lead you to malicious websites or infect your device with malware.
- Stay informed: Keep up with reports on new phishing techniques to avoid falling into the latest traps.
- Guard your personal details: Always verify the message with the sender or the organization it claims to represent, using contact details you know to be genuine.
- Monitor your accounts: Regularly check your online accounts for any unusual activity, even if you don’t suspect any foul play.
- Use reliable security solutions: Implementing a trusted anti-phishing solution can add an extra layer of protection.
Also read:
In the end, you are your own best multi-factor authenticator. If you have any doubts or even if you don’t but are about to make a sizeable transfer —call or email a known, genuine contact at the organization you’re trading with. Confirm that the details you’re using are legitimate and, whatever you do, do not click on links from unknown contacts.
As travel plans become increasingly digital, the need for cybersecurity grows more urgent. By staying vigilant and adopting safe online practices, travelers can significantly reduce the risk of falling victim to cybercrime and enjoy a safer, stress-free trip.
