Growing Cybercrime Threats: How Travelers’ Data Are Targeted and Sold on the Dark Web
The Rise of Cybercrime Targeting Global Travelers
With international travel reaching unprecedented levels, travelers are facing a growing threat: cybercrime. Recent research conducted by NordVPN and Saily unveils the dark web’s flourishing market for stolen travel documents and sensitive personal data, which has become alarmingly accessible and surprisingly cheap for criminals. Everything from passport scans to hacked loyalty accounts is being sold online, underscoring how vulnerable modern travelers have become to identity theft. Scanned passports, for instance, can be purchased for as little as $10, and fake bank statements or hacked airline accounts can command hundreds of dollars. Verified EU passports, considered premium items, are valued at over $5,000 on the dark web. This alarming trend highlights how highly coveted and lucrative personal travel information has become in the hands of cybercriminals.
How Criminals Exploit Travelers’ Data
The methods by which criminals obtain and exploit travel documents are both diverse and increasingly sophisticated. Cybercriminals frequently use malware to scan devices and cloud storage for sensitive files such as passports, visas, and driver’s licenses. Breaches in airline systems, visa processing platforms, and travel agencies expose vast amounts of passenger information. Additionally, phishing scams designed to mimic legitimate travel portals trick unsuspecting users into uploading copies of their passports and other sensitive details. Publicly shared cloud folders with loose permission settings also serve as a treasure trove for hackers. Even discarded physical documents, like boarding passes left behind at airports, can be exploited by those seeking quick access to personal information.
AI Tools and Social Engineering Intensify the Threat
New advancements in artificial intelligence (AI) have further escalated risks for travelers. AI-powered phishing scams are now reported at airports, including fake check-in portals and fraudulent Wi-Fi or lounge access registration forms. These advanced tools make phishing scams more personalized, convincing, and challenging to detect. Combining AI with stolen travel details, criminals can create deepfakes to bypass identity verification processes that many platforms rely on. With access to sensitive details such as full names, passport numbers, email addresses, and phone numbers, criminals can commit identity theft, open fraudulent accounts, apply for loans, or orchestrate targeted phishing attacks. As Marijus Briedis, CTO of NordVPN, states, “Travel documents are a goldmine for hackers because they offer direct access to your identity with minimal barriers.”
How to Protect Yourself From Emerging Cybersecurity Threats
In light of these growing threats, NordVPN and Saily stress the importance of proactive measures to safeguard your travel information. First and foremost, sensitive documents should be stored in encrypted digital vaults rather than accessible cloud platforms. Verifying URLs before submitting personal information is critical to avoid phishing scams. According to Vykintas Maknickas, CEO of Saily, maintaining a healthy skepticism can also act as a strong defense against social engineering attacks. Before responding to unfamiliar requests, individuals should always assess their legitimacy through other channels.
Experts advise travelers to keep their devices updated with antivirus software, use VPNs to secure public Wi-Fi connections, and stay vigilant against any unusual activity in their financial or loyalty accounts. Promptly reporting lost or stolen travel documents can also minimize the risk of fraud. By taking these precautions, travelers can significantly reduce the likelihood of falling victim to cybercrime while enjoying their adventures abroad. Finally, regular monitoring for suspicious activity remains a crucial practice for identifying potential breaches early on.
Insights From the Research
The findings reported by NordVPN and Saily came from research conducted between June 10 and June 20, 2025, using NordStellar, a sophisticated threat exposure management platform. By analyzing listings on dark web marketplaces and hacker forums, researchers uncovered detailed information about the pricing and availability of stolen data. Items such as passports, loyalty accounts, visas, and booking details were extensively reviewed to understand the risks associated with their misuse. By raising awareness of these trends, the study aims to inform travelers and encourage safer practices to protect their digital identities while traveling.
