Heading on vacation or booking business travel? Watch out.
Cybercriminals are sending fake booking confirmations that look like they’re from Delta, Expedia, Marriott, and other trusted brands. These phishing emails are designed to:
-
Steal login and payment details
-
Infect your devices with malware
-
Access your corporate accounts
How the Scam Works
1. A fake email lands in your inbox.
It looks legit—logos, formatting, even urgent subject lines like:
It looks legit—logos, formatting, even urgent subject lines like:
-
“Flight Change – Action Required”
-
“Your Hotel Itinerary Is Ready”
2. You click the link.
It takes you to a spoofed website that looks real—but it’s stealing your info.
It takes you to a spoofed website that looks real—but it’s stealing your info.
3. Your data is compromised.
Login credentials, credit cards, or even access to your company’s systems could be exposed.
Login credentials, credit cards, or even access to your company’s systems could be exposed.
Why It’s So Effective
-
Looks professional – Real logos, familiar formatting
-
Creates urgency – Triggers fast clicks
-
Hits when you’re distracted – Like prepping for a trip or managing travel at work
A Major Risk for Businesses Too
If your team books company travel, this scam is even more dangerous.
One bad click from an admin or travel coordinator could:
One bad click from an admin or travel coordinator could:
-
Expose company cards
-
Compromise business accounts
-
Install malware on your network
How To Stay Protected
-
Don’t click email links. Type the URL directly.
-
Check the sender’s address. Look for fake domains.
-
Train your staff. Especially those handling bookings.
-
Use MFA to protect accounts even if passwords leak.
-
Secure your email systems to filter out threats.
Get a Free Cybersecurity Assessment
Don’t wait until a fake email causes real damage. We’ll help:
-
Identify weak spots
-
Improve employee awareness
-
Lock down your travel-related risks
[Book your FREE Cybersecurity Risk Assessment now] – and keep hackers off your itinerary.