Travelers becoming targets AIgenerated phishing emails and charging traps on the rise

According to a report by “Decrypt”, with the arrival of the peak summer travel season, travelers have embarked on their journeys, and cybercriminals are turning to new technologies to carry out fraud and data theft, using methods such as phishing emails written by AI and maliciously configured mobile phone chargers to lure travelers into traps.

The quantity of phishing attacks has increased sharply following the introduction of generative AI tools. According to a recent report by cybersecurity company SlashNext, the number of email phishing attacks has increased by 856% in the past year, driven in part by generative AI technology, which allows scammers to write phishing emails in multiple languages simultaneously. This has led to a 4151% increase in the quantity of malicious emails since the introduction of OpenAI’s ChatGPT in 2022.

Patrick Harr, CEO of SlashNext, stated in an interview with Decrypt that phishing attacks involve sending messages to unsuspecting victims, prompting them to click on links and connect to malicious websites or applications, leading users to submit personal or security information, such as passwords. In January of this year, cybercriminals targeted the email addresses of users of the encrypted platform after hacking into the email service provider MailerLite, resulting in fraudulent amounts totaling over 700,000 USD.

A recent report by the International Financial Times highlighted the sharp increase in phishing attacks targeting both business and leisure travelers, including false messages and significant discounts on fake websites. Marnie Wilking, Chief Information Security Officer at booking site Booking.com, stated that phishing behavior began to increase shortly after the introduction of ChatGPT, allowing scammers to write fraudulent emails in multiple languages with good grammar, and even hoteliers may inadvertently open attachments containing malicious software while trying to resolve customer issues.

Wilking recommended that travelers and accommodation providers use two-factor authentication to ensure security and avoid clicking on anything that looks suspicious, advising to consult with hotels, property owners, and customer service units even if there’s a slight doubt.

Harr also mentioned that a newer form of phishing, “smishing,” which involves sending fraudulent links via SMS, has become increasingly popular and dangerous. He also pointed out that during the COVID-19 pandemic, businesses started using QR codes, which scammers have also begun to exploit. Additionally, while phishing attacks remain the most commonly used form of attack by cybercriminals, the US Federal Communications Commission (FCC) recently issued a warning about “juice jacking,” an attack that typically targets travelers charging their devices in airports and hotels. This type of attack takes advantage of the built-in technology in universal USB standards, which not only transfers power but also data. Maliciously configured USB ports or connectors may steal information or install unnecessary software after being inserted into a victim’s device.

The FCC advises against using free charging stations in airports, hotels, or shopping centers to prevent this emerging type of attack, recommending the use of personal chargers plugged into basic power outlets, portable batteries, or data blockers to ensure that USB connections are limited to power transmission.

Leave a Reply

Your email address will not be published. Required fields are marked *

Check Also

Successful Conclusion of CoinEx Taiwan’s 7th Anniversary Celebration, Embracing the Arrival of the Web3 Era Hand in Hand with Users

Since its establishment in 2017, CoinEx has been a professional cryptocurrency trading pla…