Summer holidays under scammers’ crosshairs: Cyprus warns of a new data-theft scheme

Cybersecurity specialists in Cyprus have warned about a surge in fraudulent attacks linked to summer holiday bookings. Criminals use popular messaging apps to gain access to tourists’ personal data and bank cards.

As the director of services at Odyssey Cybersecurity, Andreas Constantinides, said, users receive messages via WhatsApp asking them to confirm their holiday booking. The notification contains a link to a fake website that is visually almost indistinguishable from the real booking service.

Particular danger lies in the fact that scammers often have real customer details — the name, travel dates and other booking information. This creates an impression of authenticity and increases the likelihood that the user will carry out the requested actions.

After following the link, the victim is prompted to enter bank card details allegedly to confirm the booking. As a result, criminals gain access to both payment information and the user’s personal data.

According to the expert, the source of information for scammers can be data leaks from travel agencies, booking services or property owners. The information obtained is then used to carry out targeted attacks.

Andreas Constantinides urged citizens not to follow links from unknown senders and not to enter payment details on suspicious websites. Particular caution should be exercised when receiving such requests via WhatsApp, SMS and social networks.

The expert recommends that, in case of any doubt, people contact the hotel, property owner or booking platform directly through official communication channels. This will help avoid financial losses and protect personal information during the summer holiday season.