The travel industry is increasingly dominated by automated traffic, with a concerning proportion deemed malicious.
A recent report highlights that nearly half of online traffic in this sector is generated by bots, posing significant security risks.
In recent years, the travel industry has witnessed a significant rise in automated online traffic. According to the 2024 Bad Bot Report by Imperva, an IT security firm, over 49.6% of online traffic is generated by bots. Meanwhile, only about 51.1% of traffic comes from human users, indicating a shift towards increased digital automation. This escalation poses various challenges to the industry.
Malicious bots, which now represent 44.5% of online traffic, have become a pressing threat in the industry. These bots are considered ‘evasive’ due to their advanced techniques that mimic human behaviour, complicating efforts to distinguish bot activity from legitimate human users. Imperva’s report highlights a worrying trend, as this represents an increase from 37% of such traffic in the previous year.
The travel sector is particularly vulnerable to bot attacks, ranking as the fourth most targeted industry. With 20.7% of all online attacks aimed at the travel industry, it trails only behind retail. This has led to increased incidents of account takeovers and fraudulent activities, such as ‘seat spinning’ and data theft, which significantly affect airlines and travel service providers.
Geographically, the travel industry faces substantial threats, particularly in the UK and the US. The UK is the second-most targeted nation by malicious bot attacks, following the US. This targeting includes account takeovers and other forms of cyber intrusion, demanding enhanced vigilance and improved security measures.
Bot technology continues to evolve, becoming more sophisticated each year. Imperva notes that nearly 61% of malicious bots in the travel sector are classified as ‘sophisticated’, employing complex tactics that evade traditional detection measures. This sophistication is partly driven by advancements in artificial intelligence and machine learning.
To address these threats, sector experts suggest a multi-faceted approach. Investment in bot management systems and API security tools is critical. Organisations need to be proactive, changing the way they develop and safeguard their digital platforms. Enhancing these security measures can help mitigate the risks posed by malicious bots.
Imperva advises users to remain vigilant for signs of bot activity. Unusual price changes, slow website performance, and frequent CAPTCHA requests can all be indicators of potential bot interference. User education and awareness form a crucial part of defending against these threats.
The rapid increase in automated and malicious bot traffic underscores the urgent need for robust cybersecurity measures within the travel industry. As technology evolves, so too must the strategies to protect against these sophisticated threats.
Organisations in the travel sector must prioritise investment in advanced security solutions to safeguard consumer data and maintain trust. Proactive measures today are essential for the safety and integrity of tomorrow’s digital landscape.
