Fraud and ransomware are expected to plague the threat landscape facing retailers, hospitality, and travel businesses during their busiest season, according to a new Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) report. The annual Holiday Season Cyber Threat Trends report predicts that social engineering, ransomware, and activity from the Scattered Spider threat actor will be primary threats to retail and hospitality organizations during the 2024 holiday season.
The report also notes that social engineering attacks have increased in sophistication this year, and companies are reporting an increase in imposter websites, product-focused phishing attempts, and phone call-based social engineering.
Top 5 Ways Fraudsters Will Try to Get What They Want This Holiday Season
Here are the top five ways Visa PERC expects fraudsters will attempt to take over accounts or steal data or funds this holiday season:
- Phishing and Social Engineering
- Scam Merchants
- Holiday Travel Scams
- Malicious Holiday Apps
- Physical Theft
Analysis of cyber threats reported during the last holiday season shows that ransomware accounted for 26% of all reported incidents, doubling from 13% in the previous year. This increase marked the first time ransomware overtook threats like credential harvesting and phishing attacks, signaling a significant evolution in the threat landscape facing consumer businesses.
“The increase in ransomware reporting reflects a global threat trend that saw reported attacks against our member organizations spike by nearly 100% in the latter half of 2023,” said Suzie Squier, president of RH-ISAC. “As we enter the 2024 holiday season, it’s crucial for the retail and hospitality industry to stay ahead of the curve by understanding the latest trends and implementing robust security measures.”
The report also highlights insights from Visa’s Payment Ecosystem Risk and Control (PERC) team, which identified a 284% increase in fake and spoofed merchant websites in the four months leading up to the holiday season. Additionally, employment scams saw a staggering 545% increase during the previous holiday season.