Trustwave SpiderLabs’ upcoming report, the 2025 Trustwave Risk Radar Report: Hospitality Sector, will be released on May 21 and will delve into the latest threat landscape, highlighting critical vulnerabilities and offering actionable insights to help hospitality businesses stay secure.
The report notes that the hospitality industry has become a prime target for cybercriminals, with threats growing in volume and sophistication. The sector continues to see an expanded threat surface as adversaries infiltrate online booking systems, connected devices, and cloud-based services.
The primary report has two companion pieces:
There will be an accompanying webinar that will offer a deeper and personal look at the data Trustwave SpiderLabs has compiled.
SpiderLabs findings include the fact that public-facing SNMP services within hospitality networks are twice as common as any other exposed service, presenting a massive opportunity for threat actors. Furthermore, the research identified more than 15,000 critical vulnerabilities open to the public internet, an alarming number of entry points for any organization handling sensitive guest data.
Another concerning trend is the rise of ‘dark web travel agents’ offering deeply discounted “luxury” travel packages. These underground services, active since 2018, often rely on stolen credit card data or compromised booking accounts, allowing criminals to profit from fraudulent itineraries. Not only does this affect the targeted hotels and airlines, but it also puts unknowing travelers at risk of financial loss and identity theft.
As cybercriminals continue to exploit weaknesses in the hospitality sector, businesses must stay vigilant. From safeguarding booking portals to monitoring for dark web chatter, proactive measures are essential.
Stay tuned for the full 2025 Trustwave Risk Radar Report next week, where we’ll share deeper insights and practical recommendations to help your organization fortify its defenses.
