Cyberattacks on Indian travel sector surge amid holiday booking rush PSU Watch
News Updates

Cyberattacks on Indian travel sector surge amid holiday booking rush

Indian organisations faced an average of 3,296 cyberattacks per week over the past six months, compared to the global average of 2,085, the report by Check Point Research said

PTI

New Delhi: Cybercriminals are heavily targeting India's travel and hospitality sector to exploit the holiday booking rush, with organisations facing significantly more cyberattacks than the global average, according to a report.

Indian organisations faced an average of 3,296 cyberattacks per week over the past six months, compared to the global average of 2,085, the report by Check Point Research said.

Follow The PSUWatch Channel on WhatsApp

The hospitality, travel, and recreation sector recorded 2,291 average weekly attacks per organisation in May 2026, marking a 24 per cent year-on-year increase. In contrast, the global year-over-year rise across all industries was merely 2 per cent.

"This is not a general uptick in cybercrime that happens to touch travel. It is a deliberate, seasonal intensification targeting an industry that processes enormous volumes of personal and financial data precisely when people are distracted, rushing, and eager to secure a good deal.

"The risks are amplified in India, where 86 per cent of malicious files observed in the last month were delivered via the web. This underscores how fake travel websites, fraudulent booking portals, and malicious online advertisements have become some of the most effective tools for cybercriminals targeting travellers," the Check Point report said.

In May 2026 alone, 47,318 new travel-related domains were registered, a 33 per cent increase from April and 19 per cent higher than May 2025. The report noted that one in every 112 of these domains is already classified as malicious or suspicious, with many remaining dormant until they are activated to exploit peak travel web traffic.

Follow PSU Watch on LinkedIN

Also read:Indian consumers lose 36% more than global average to digital fraud: Report

Threat actors are actively impersonating trusted online travel booking platforms. Check Point identified active phishing campaigns using fake domains mimicking Booking.com, Airbnb, and Skyscanner, alongside bulk-registration campaigns impersonating brands like American Express and Lloyds Travel Choice.

(PSU Watch is India's Business News centre that places the spotlight on PSUs, Bureaucracy, Defence and Public Policy. 👉 Click to join our channel now: PSUWatch WhatsApp Channel. Prefer LinkedIn? Follow PSU Watch on LinkedIN. Click to stay connected on Twitter here and stay updated)

Also Read

Core sector growth slips to 7-month low of 0.5% in May

Himachal Govt signs pacts for 19 hydropower projects worth Rs 3,336 crore

TN lost over 25 major investment projects worth Rs 3.34 lakh crore during DMK regime: Minister

GBA launches Global Biofuel Champion Fellowship, to award 15 early-career researchers on June 30

PFC appoints Pankaj Gupta as Part-Time Non-Official Director on its board