Cybercrime is no longer just hackers sending phishing emails or small groups running online scams. According to new research from NordVPN’s Threat Intelligence team, cybercrime is becoming industrialized — with large-scale operations running fake stores, cryptocurrency scams, and malware campaigns across thousands of websites worldwide.

The report reveals three major global scam operations that demonstrate how cybercriminals are increasingly operating like technology companies, using automation, infrastructure, and large-scale systems to run fraud campaigns at scale.

Old software vulnerabilities creating new threats

One of the most surprising findings in the report is that attackers are still exploiting extremely old software vulnerabilities. In one campaign, cybercriminals exploited a 15-year-old vulnerability in an outdated web editor tool to compromise more than 1,300 websites, including government, corporate, and research domains.

These trusted websites were then used to redirect visitors to phishing pages, fake online stores, or malware downloads. Because the domains were legitimate, security systems were more likely to trust them, making the attacks far more effective.

Attackers exploit outdated software to compromise trusted websites and redirect users to scams

This strategy shows how cybercriminals are increasingly using legitimate infrastructure to run scams rather than building everything from scratch.

Cryptocurrency scams evolving into identity theft operations

The report also uncovered a large-scale cryptocurrency phishing network involving more than 100 fake crypto domains. The scam begins with emails claiming the recipient has received a large cryptocurrency deposit by mistake.

Victims are directed to fake cryptocurrency platforms where they are asked to log in and later pay so-called “gas fees” to withdraw the funds. In reality, the platforms are fake and the fees are stolen, while attackers also collect personal data for identity theft.

Cryptocurrency phishing scams trick users into paying fake fees and revealing personal data

These scams combine phishing, identity theft, and cryptocurrency fraud into a single operation, making them particularly effective and difficult to detect.

Fake online stores run like businesses

Another operation uncovered in the investigation involved more than 800 fake e-commerce stores built using common website tools like WordPress and WooCommerce. These sites advertise products at extremely low prices to attract buyers, but customers either receive counterfeit goods or nothing at all.

Investigators found that many of these websites were connected to a centralized operation, showing how automation allows a single group to operate hundreds of fake stores at once.

Cybercrime is becoming an industry

The most important takeaway from the report is that cybercrime is increasingly being run like a business. Criminal groups are using automation, software platforms, data analytics, and large-scale infrastructure to run fraud operations efficiently.

Instead of isolated scams, we are now seeing:

• Scam networks
• Fraud platforms
• Automated phishing systems
• Fake e-commerce ecosystems
• Industrial-scale cybercrime operations

This shift means cybersecurity is no longer just about stopping individual hackers — it is about defending against organized digital industries built around fraud.

The future of cybersecurity

As cybercrime becomes more organized and automated, cybersecurity will increasingly rely on AI, automation, and threat intelligence to detect patterns and stop attacks before they reach users.

For individuals and businesses, the biggest risks continue to come from phishing, fake websites, outdated software, and online scams — all of which are becoming more sophisticated every year.

The post Cybercrime Goes Industrial appeared first on Tech Trends.

Cyber attacks linked to geopolitical conflict are increasingly affecting the companies and systems that ordinary people rely on every day, according to cybersecurity researchers and analysts.

A new commentary from cybersecurity publication Cybernews warns that cyberwar is no longer limited to governments, military systems, or intelligence agencies. Instead, attacks are increasingly targeting healthcare systems, payment infrastructure, and critical services used by the public and private sector.

Cyber attacks moving beyond government targets

Recent incidents involving major companies highlight how geopolitical cyber retaliation can now have real-world consequences for businesses and public services.

According to reporting referenced in the commentary, Iran-linked hacktivist group Handala claimed attacks on payment provider Verifone and medical technology company Stryker. The alleged attack on Stryker reportedly disrupted operations and affected healthcare providers attempting to order surgical supplies, demonstrating how cyber incidents can ripple into healthcare systems and supply chains.

These types of attacks show that modern cyberwarfare is increasingly focused on economic and infrastructure targets rather than purely government systems.

Threat activity already increasing online

Security researchers say the threat landscape is already expanding as geopolitical tensions rise.

Researchers have identified thousands of newly registered domains related to Middle East conflict themes, which may later be used in phishing campaigns, malware distribution, or disinformation campaigns. Attack methods expected to increase include:

• Phishing campaigns
• Distributed denial of service (DDoS) attacks
• Ransomware
• Data leaks and hack-and-leak operations
• Destructive malware attacks
• Credential harvesting and password spraying

These tactics are commonly used by both state-backed groups and affiliated hacktivist organizations.

Human error remains the biggest vulnerability

Despite increasingly sophisticated cyber attacks, experts say the most common entry point remains human error and basic security weaknesses.

Common vulnerabilities include:

• Unpatched software
• Weak or reused passwords
• Default credentials on internet-connected devices
• Lack of multi-factor authentication
• Employees falling for phishing emails

Researchers also warn that artificial intelligence is making cyber attacks easier to scale, allowing attackers to generate convincing phishing messages and automate parts of the attack process.

This combination of geopolitical conflict, automation, and existing security weaknesses means organizations must improve basic cybersecurity practices to reduce risk.

Cyberwar now affects everyday services

The key takeaway from recent incidents is that cyberwar is no longer a distant or abstract threat. Instead, it is increasingly affecting companies that provide essential services such as healthcare, payments, logistics, and infrastructure.

For businesses, this means improving patching, authentication, and employee cybersecurity training. For individuals, it highlights the importance of strong passwords, multi-factor authentication, and caution when opening emails or clicking links.

As geopolitical tensions continue to influence cyber activity, experts warn that disruptions may increasingly affect everyday services rather than traditional government targets.

The post Cyberwar Reaching Everyday Systems appeared first on Tech Trends.

Cybercriminals are exploiting booking platforms and property management systems—forcing hotels to rethink how they defend their digital infrastructure.

A Growing Threat to Hospitality

Hospitality businesses are facing a surge in phishing attacks, with cybercriminals increasingly targeting hotel property management systems (PMS), booking platforms, and internal communications.

According to industry experts, attackers are using increasingly sophisticated methods to trick staff into revealing login credentials or installing malicious software—often by impersonating trusted systems or partners.

Nicola Longfield, General Manager for Accommodation at Access Hospitality, explains:

“Cybercriminals are actively targeting hotel property management systems, email systems, and booking channels… sending emails that appear to be from legitimate sources designed to trick staff into entering login information or downloading malware.”

These attacks are not random—they are highly targeted and tailored to hospitality workflows.

How Phishing Attacks Are Evolving

Unlike traditional phishing attempts, today’s attacks are designed to closely mimic real operational scenarios within hotels.

Common tactics include:

• Fake login pages that replicate hotel systems

• Lookalike domain names designed to deceive staff

• Google Ads used to promote fraudulent login portals

• Emails impersonating booking platforms or internal systems

• Urgent messaging around payments or reservations

Jan Hejny, CEO at HotelTime, highlights the growing sophistication:

“Phishing attacks are becoming far more targeted and contextual… often mimicking real payment or booking scenarios.”

Once attackers gain access, the consequences escalate quickly—ranging from fraudulent guest communications to full system compromise.

The Business Impact

The risks extend far beyond IT systems.

Potential consequences include:

• Compromised guest data

• Fraudulent booking communications

• Financial losses

• Operational disruption

• Long-term damage to brand trust

As Diego Baldini, CISO of The Access Group, notes:

“These attacks can result in compromised hotel accounts, fraudulent communications sent to guests, and serious reputational or financial harm.”

Industry Response: Collaboration and Awareness

Major hospitality tech providers—including Guestline, Mews, HotelTime, and Planet—are actively working to combat the rise in attacks.

Richard Johnson, Chief Information Security Officer at Planet, emphasizes the importance of shared intelligence:

“Fraud is a full-time operation… by sharing intelligence quickly and raising collective awareness, we continually make it harder for them to succeed.”

This highlights a broader shift: cybersecurity in hospitality is becoming a collective responsibility, not just an individual one.

How Hotels Can Protect Themselves

Experts point to several immediate actions that can significantly reduce risk.

1. Adopt Phishing-Resistant MFA (Passkeys)

Passkey-based authentication is emerging as the gold standard.

• Creates a cryptographic link to legitimate login pages

• Prevents credential theft even if phishing occurs

• Eliminates reliance on passwords and one-time codes

• Supports biometric or hardware-based authentication

2. Train Staff and Reduce Human Risk

Human error remains the primary attack vector.

• Bookmark official login pages

• Avoid logging in via search engines

• Identify suspicious emails and urgent requests

• Encourage immediate reporting of potential threats

3. Strengthen Access Controls

• Use strong, unique passwords

• Avoid shared login accounts

• Implement role-based access permissions

4. Keep Systems Updated

• Apply security patches regularly

• Maintain antivirus and firewall protections

• Back up critical systems and test recovery processes

Why This Matters Now

The rise in phishing attacks reflects a broader reality: hospitality is becoming an increasingly attractive target for cybercriminals.

Hotels sit at the intersection of:

• Financial transactions

• Personal data

• Real-time customer interactions

This makes them uniquely vulnerable—and highly valuable targets.

Conclusion

As phishing attacks grow more sophisticated, hospitality businesses can no longer rely on basic security measures.

The shift toward phishing-resistant authentication, staff awareness, and proactive system management is no longer optional—it is essential.

In an industry built on trust and guest experience, cybersecurity is quickly becoming a core pillar of business resilience.

The post Securing Hotel Booking Systems appeared first on Tech Trends.