Cyber attacks linked to geopolitical conflict are increasingly affecting the companies and systems that ordinary people rely on every day, according to cybersecurity researchers and analysts.

A new commentary from cybersecurity publication Cybernews warns that cyberwar is no longer limited to governments, military systems, or intelligence agencies. Instead, attacks are increasingly targeting healthcare systems, payment infrastructure, and critical services used by the public and private sector.

Cyber attacks moving beyond government targets

Recent incidents involving major companies highlight how geopolitical cyber retaliation can now have real-world consequences for businesses and public services.

According to reporting referenced in the commentary, Iran-linked hacktivist group Handala claimed attacks on payment provider Verifone and medical technology company Stryker. The alleged attack on Stryker reportedly disrupted operations and affected healthcare providers attempting to order surgical supplies, demonstrating how cyber incidents can ripple into healthcare systems and supply chains.

These types of attacks show that modern cyberwarfare is increasingly focused on economic and infrastructure targets rather than purely government systems.

Threat activity already increasing online

Security researchers say the threat landscape is already expanding as geopolitical tensions rise.

Researchers have identified thousands of newly registered domains related to Middle East conflict themes, which may later be used in phishing campaigns, malware distribution, or disinformation campaigns. Attack methods expected to increase include:

• Phishing campaigns
• Distributed denial of service (DDoS) attacks
• Ransomware
• Data leaks and hack-and-leak operations
• Destructive malware attacks
• Credential harvesting and password spraying

These tactics are commonly used by both state-backed groups and affiliated hacktivist organizations.

Human error remains the biggest vulnerability

Despite increasingly sophisticated cyber attacks, experts say the most common entry point remains human error and basic security weaknesses.

Common vulnerabilities include:

• Unpatched software
• Weak or reused passwords
• Default credentials on internet-connected devices
• Lack of multi-factor authentication
• Employees falling for phishing emails

Researchers also warn that artificial intelligence is making cyber attacks easier to scale, allowing attackers to generate convincing phishing messages and automate parts of the attack process.

This combination of geopolitical conflict, automation, and existing security weaknesses means organizations must improve basic cybersecurity practices to reduce risk.

Cyberwar now affects everyday services

The key takeaway from recent incidents is that cyberwar is no longer a distant or abstract threat. Instead, it is increasingly affecting companies that provide essential services such as healthcare, payments, logistics, and infrastructure.

For businesses, this means improving patching, authentication, and employee cybersecurity training. For individuals, it highlights the importance of strong passwords, multi-factor authentication, and caution when opening emails or clicking links.

As geopolitical tensions continue to influence cyber activity, experts warn that disruptions may increasingly affect everyday services rather than traditional government targets.

The post Cyberwar Reaching Everyday Systems appeared first on Tech Trends.

Cybercriminals are exploiting booking platforms and property management systems—forcing hotels to rethink how they defend their digital infrastructure.

A Growing Threat to Hospitality

Hospitality businesses are facing a surge in phishing attacks, with cybercriminals increasingly targeting hotel property management systems (PMS), booking platforms, and internal communications.

According to industry experts, attackers are using increasingly sophisticated methods to trick staff into revealing login credentials or installing malicious software—often by impersonating trusted systems or partners.

Nicola Longfield, General Manager for Accommodation at Access Hospitality, explains:

“Cybercriminals are actively targeting hotel property management systems, email systems, and booking channels… sending emails that appear to be from legitimate sources designed to trick staff into entering login information or downloading malware.”

These attacks are not random—they are highly targeted and tailored to hospitality workflows.

How Phishing Attacks Are Evolving

Unlike traditional phishing attempts, today’s attacks are designed to closely mimic real operational scenarios within hotels.

Common tactics include:

• Fake login pages that replicate hotel systems

• Lookalike domain names designed to deceive staff

• Google Ads used to promote fraudulent login portals

• Emails impersonating booking platforms or internal systems

• Urgent messaging around payments or reservations

Jan Hejny, CEO at HotelTime, highlights the growing sophistication:

“Phishing attacks are becoming far more targeted and contextual… often mimicking real payment or booking scenarios.”

Once attackers gain access, the consequences escalate quickly—ranging from fraudulent guest communications to full system compromise.

The Business Impact

The risks extend far beyond IT systems.

Potential consequences include:

• Compromised guest data

• Fraudulent booking communications

• Financial losses

• Operational disruption

• Long-term damage to brand trust

As Diego Baldini, CISO of The Access Group, notes:

“These attacks can result in compromised hotel accounts, fraudulent communications sent to guests, and serious reputational or financial harm.”

Industry Response: Collaboration and Awareness

Major hospitality tech providers—including Guestline, Mews, HotelTime, and Planet—are actively working to combat the rise in attacks.

Richard Johnson, Chief Information Security Officer at Planet, emphasizes the importance of shared intelligence:

“Fraud is a full-time operation… by sharing intelligence quickly and raising collective awareness, we continually make it harder for them to succeed.”

This highlights a broader shift: cybersecurity in hospitality is becoming a collective responsibility, not just an individual one.

How Hotels Can Protect Themselves

Experts point to several immediate actions that can significantly reduce risk.

1. Adopt Phishing-Resistant MFA (Passkeys)

Passkey-based authentication is emerging as the gold standard.

• Creates a cryptographic link to legitimate login pages

• Prevents credential theft even if phishing occurs

• Eliminates reliance on passwords and one-time codes

• Supports biometric or hardware-based authentication

2. Train Staff and Reduce Human Risk

Human error remains the primary attack vector.

• Bookmark official login pages

• Avoid logging in via search engines

• Identify suspicious emails and urgent requests

• Encourage immediate reporting of potential threats

3. Strengthen Access Controls

• Use strong, unique passwords

• Avoid shared login accounts

• Implement role-based access permissions

4. Keep Systems Updated

• Apply security patches regularly

• Maintain antivirus and firewall protections

• Back up critical systems and test recovery processes

Why This Matters Now

The rise in phishing attacks reflects a broader reality: hospitality is becoming an increasingly attractive target for cybercriminals.

Hotels sit at the intersection of:

• Financial transactions

• Personal data

• Real-time customer interactions

This makes them uniquely vulnerable—and highly valuable targets.

Conclusion

As phishing attacks grow more sophisticated, hospitality businesses can no longer rely on basic security measures.

The shift toward phishing-resistant authentication, staff awareness, and proactive system management is no longer optional—it is essential.

In an industry built on trust and guest experience, cybersecurity is quickly becoming a core pillar of business resilience.

The post Securing Hotel Booking Systems appeared first on Tech Trends.