Deepfakes, Scams and Phishing Threaten International Business Travelers

[Global Rescue]

Article Highlights:​

• International business executives are prime targets for phishing, deepfakes, ransomware, and hotel scams while traveling abroad.
• Juice jacking attacks at public USB stations and hotel rooms compromise smartphones and laptops.
• Deepfake audio and video are increasingly used to impersonate executives and steal funds or data.
• Fake hotel Wi-Fi networks, calls from “front desks,” and room service scams are on the rise.
• Global Rescue’s GRID system delivers real-time security alerts and emergency support worldwide.

International travel is increasingly essential for business leaders. But it’s also increasingly dangerous. Executives don’t just navigate geopolitics, contracts and currency, but also have to defend against an evolving world of cyber threats, phishing attacks and targeted scams. Deepfake impersonations, malware hidden in hotel Wi-Fi, communication “smishing,” etc., modern business travelers face a gauntlet of risks for which few are prepared.

International executives are high-value targets. They carry sensitive corporate data, maintain access to financial assets and often lack local security support. Their visibility makes them attractive to cybercriminals using tactics like juice jacking, spear phishing, vishing, smishing and even AI-generated deepfakes.

Scams and Juice Jacking Upon Arrival​

Cyber threats spike the moment an executive lands in a new country. Unfamiliar surroundings, limited support and unpredictable infrastructure create a perfect storm for opportunistic scams. Particularly in high-risk countries — Afghanistan, Nigeria, Venezuela, Syria and certain parts of Mexico — physical and digital security threats overlap.

Public USB charging ports at airports and hotels are a major concern. These ports can be rigged for juice jacking, a type of attack where malware is installed or sensitive data is extracted as the device charges. Likewise, public Wi-Fi networks, especially those in hotel lobbies, are hotbeds for man-in-the-middle attacks, allowing hackers to intercept communications or deploy malware.

Spear Phishing, Vishing and Smishing​

Social engineering remains the most effective weapon in the hacker’s arsenal. Executives regularly receive emails with infected attachments, malicious links or convincing requests for wire transfers. This is phishing, but when explicitly tailored to the individual, it’s spear phishing, and it’s deadly effective.

Beyond email, scammers are turning to vishing (voice phishing) and smishing (SMS or text phishing), pretending to be company leadership, banks or even travel management providers. These calls and messages often escalate during international trips, when targets are distracted or disoriented.

Deepfakes Are Changing the Game​

Perhaps the most insidious threat on the rise is the use of deepfakes. AI-generated voice or video can convincingly impersonate a CEO, instructing an assistant to initiate a wire transfer or divulge sensitive information. In 2024, one European company lost over $200,000 when attackers used a deepfake voice of the CEO during a live phone call.

Deepfakes are especially dangerous during business travel, when communication occurs across multiple time zones and platforms and where verifying authenticity is more difficult.

International Business Traveler Hotel Room Safety​

Hotels are not safe havens. They’re frequent targets for criminals using sophisticated scams. Common attacks include:

• Fake Front Desk Calls: Criminals call rooms claiming to be hotel staff needing to “verify payment details.” Guests, half-asleep and unaware, often give up credit card info.
• Evil Twin Wi-Fi Networks: Hackers create Wi-Fi networks that mimic hotel access points. Once connected, executives’ emails, passwords and sensitive documents are up for grabs.
• DarkHotel Attacks: These advanced persistent threats (APTs) involve malware hidden in hotel networks, used to target high-profile travelers through spoofed software updates.
• Fake Room Service: Scammers distribute fake menus or offer tours/events, collecting payment for services that don’t exist, or worse, using it as a pretense to enter rooms.

Even the USB ports in hotel rooms can be rigged for juice jacking. Savvy travelers now avoid hotel USB outlets altogether and rely on wall plugs, portable power banks or USB data blockers.

Smartphone and Laptop Defense Tactics​

While it’s tempting to work from the road, using corporate laptops and smartphones without the proper protections can be catastrophic.

Mobile device security is paramount. Avoid installing unfamiliar apps, disable Bluetooth when not in use and always use VPNs. Executives should travel with devices that use robust encryption, multi-factor authentication (MFA) and remote wipe capabilities in case of loss or theft.

Updates should be completed before departure and critical data should be backed up, ideally to a secure cloud location. For added protection, organizations should implement Mobile Device Management (MDM) solutions to control access remotely.

Hotel Security Tips From a Navy SEAL​

Harding Bush, former Navy SEAL and Global Rescue’s associate director of security operations, views hotel check-in as one of the most vulnerable points in any executive’s travel itinerary. His hotel safety strategy includes:

• Staying between the 3rd and 6th floors for security and fire safety.
• Keeping luggage between your feet during check-in.
• Politely requesting that your room number not be spoken aloud.
• Inspecting locks, safes, windows and peepholes immediately.
• Using a makeshift alarm, such as a door wedge or noise-making object.
• Locate the nearest stairwell or exit in case of evacuation.

His most important tip? “Trust your instincts. If something feels wrong, it probably is. Ask for another room, or another hotel.”

Beyond the Hotel: Situational Awareness and Solo Travel​

According to a recent Global Rescue survey, 93% of solo travelers say situational awareness is their top travel safety strategy. This includes recognizing suspicious behavior, avoiding distractions like phones in public and staying in well-lit areas.

Business travelers should also be wary in parking garages, a hotspot for theft, assaults or surveillance. Park near exits, avoid dark corners and keep keys in hand when walking to your vehicle.

Cyber Hygiene and Booking Best Practices​

• Book directly with reputable hotel chains or via secure corporate travel portals. Avoid third-party sites with poorly designed checkout pages.
• Ignore unsolicited emails or texts claiming to be from hotel staff. Always call the front desk directly if you receive odd communication.
• Use strong passwords, two-factor authentication and password managers to secure accounts.
• Do not use public Wi-Fi for banking or confidential business. Hotspot or VPN access is a must.
• Carry RFID-blocking wallets, secure zippered bags and backup power supplies to minimize risk.

​

The Global Rescue Connection​

Despite all precautions, risk can never be eliminated entirely. That’s where Global Rescue comes in.

For international business executives, access to real-time alerts, emergency communication and on-the-ground extraction can mean the difference between crisis and control. The Global Rescue Intelligence Delivery system (GRID) offers precisely that.

GRID connects travelers directly to Global Rescue’s medical and security professionals, including special operations veterans, via secure in-app messaging. It provides:

• Real-time alerts about civil unrest, natural disasters, disease outbreaks and more.
• Location check-ins and tracking capabilities for traveling personnel.
• Crisis response and coordination from regional security and medical experts.

Named one of Fast Company’s Most Innovative Companies of 2024, GRID empowers businesses to safeguard their most valuable assets: their people.

In a world where cyber threats, phishing scams, deepfakes and ransomware are increasingly sophisticated, GRID provides a vital layer of protection. For international business travelers, it’s more than a mobile app; it’s a lifeline.