Conference attendees have long been targets for cybercriminals, but a troubling new trend is raising the stakes. According to a recent report from WIRED, security researchers uncovered a global “reservation hijacking” scheme involving more than 350 hotels, vacation rentals, and guest properties across 50 countries. Criminals are using real reservation details, including hotel names, travel dates, and booking information, to create highly convincing phishing messages designed to steal payment information and personal data. The sophistication of these attacks makes them significantly harder to identify than traditional travel scams.
For healthcare associations, the implications are significant. Annual meetings, educational conferences, board retreats, and specialty events require extensive travel coordination involving thousands of physicians, nurses, researchers, exhibitors, and industry partners. When an attendee receives a message that appears to reference a legitimate reservation, it is easy to understand why they might trust it. Unfortunately, that trust is exactly what cybercriminals are exploiting. The trend is gaining additional attention following recent reports that reservation data from major travel platforms may have been exposed, creating new opportunities for targeted scams.
At Veritas Association Management, we believe protecting members extends beyond registration systems and meeting logistics. It also means helping associations understand emerging risks that can affect their communities. In a new LinkedIn article, Veritas Founder and CEO Sue O’Sullivan explores why these scams are becoming more common, why conference attendees may be particularly vulnerable, and what association leaders can do to help protect members, exhibitors, speakers, and partners before they travel.