Planning a visit? Pretend journey websites are multiplying this summer time

Cyberattacks in opposition to hospitality, journey, and recreation organizations rose 24% yr over yr, reaching a mean of two,291 incidents per group every week in May 2026, based on Check Point.

(Source: Check Point)

“The sector has more than doubled its attack volume since May 2023,” researchers famous, reporting a cumulative improve of 122% over three years.

According to the report, 47,318 travel-related domains had been registered in May 2026, a 33% improve from the earlier month. One in each 112 newly registered domains was already categorised as malicious or suspicious.

“Many others remain dormant for now, waiting to be activated as summer traffic peaks.”

Check Point recognized three coordinated bulk-registration operations throughout April and May. One concerned greater than 210 sequentially numbered hotel-themed domains utilizing naming patterns reminiscent of hotel-stay[N].com and stay-hotel[N].com.

Another referenced American Express and Lloyds Travel Choice, combining phrases reminiscent of “happytrip” and “travelchoice” on .ink domains. A 3rd focused the Fora Travel model via 108 top-level domains, together with .cruises, .miami, and .worldwide.

The researchers additionally uncovered phishing websites masquerading as Booking.com, Airbnb, and Skyscanner.

One Booking.com-themed operation used pretend login pages to steal credentials and cost card particulars, whereas an Airbnb-themed website focused vacationers planning journeys to Canada with listings for locations reminiscent of Montreal, Toronto, Vancouver, and Banff alongside imagery of the Canadian Rockies.

“The people behind fake booking sites plan around the summer surge just as carefully as legitimate businesses do, and they are ready well before most travelers start searching,” researchers concluded.