The Middle East’s hospitality and leisure sector is experiencing rapid growth, accompanied by a surge in cyber security challenges. As organisations continue their digital transformation, the hospitality sector in particular, is becoming a prime target for cyberattacks. From major data breaches to sophisticated malware campaigns, businesses in the UAE and across the region need to strengthen their defences to protect sensitive customer data and maintain trust.
A rising tide of cyberattacks
In the past six months, organisations in the Middle East have faced an average of 2,215 cyberattacks per week, significantly higher than the 1,682 attacks per week observed across Europe, the Middle East, and Africa (EMEA). The UAE, along with Turkey and Saudi Arabia, continues to be a major target for cybercriminals due to its extensive adoption of digital technologies and the presence of international enterprises, making it an attractive target for threat actors exploiting vulnerabilities.
Among the prevalent malware affecting the region are FakeUpdates, Androxgh0st, and Formbook, often infiltrating systems through phishing emails and social engineering tactics. Notably, 77 per cent of malicious files in the Middle East were delivered via email in the past 30 days, highlighting the persistent threat posed by phishing campaigns.
The evolving cyber security threat landscape
The threat landscape in the region is growing increasingly complex. Nation-state actors now employ AI-driven strategies, including disinformation campaigns and disruptive malware, to destabilise digital infrastructures. While these attacks may not immediately cause widespread damage, they pave the way for future exploits targeting emerging vulnerabilities.
Ransomware poses another significant threat, with criminals shifting from encrypting data to extorting it through data leaks. The healthcare and hospitality sectors, handling substantial amounts of personal data, are prime targets for these increasingly targeted attacks.
Infostealers: The silent threat
Infostealers have seen a 58 per cent increase in attacks globally in 2024, particularly targeting sensitive corporate credentials and tokens, focusing on Bring Your Own Device (BYOD) environments. As UAE companies adopt flexible work environments, attackers increasingly exploit these vulnerabilities to gain initial access and exfiltrate valuable data.
The surge in infostealer attacks means businesses must be vigilant, with businesses urged to deploy advanced monitoring and detection systems to identify suspicious activities early and mitigate the risk of data breaches.
Cyberattacks in the UAE hospitality sector
The UAE’s hospitality industry faces these emerging threats. In January 2025, a significant breach was reported involving a hotel management platform which suffered a data breach that exposed guest information. The breach resulted in the theft of nearly eight terabytes of data, including sensitive personal details from major hotel chains. This incident underscores the vulnerability of the hospitality sector in the UAE, which is increasingly reliant on cloud-based systems for guest data management and reservations.
Additionally, the rise of CopyRh(ight)adamantys phishing campaigns, employing Rhadamanthys stealer malware, has impacted UAE entertainment and hospitality sector. These campaigns impersonate various companies to steal credentials, posing substantial risks to businesses reliant on online transactions and customer data.
Securing the future: What UAE organisations can do
As cyber threats escalate in sophistication, UAE hospitality organisations must take immediate action to enhance their cybersecurity posture. Key actions include:
- Employee awareness and training – Implement regular cyber security training to empower employees in identifying phishing attempts and other social engineering tactics.
- Advanced threat detection – Utilise AI-powered security tools for faster threat detection and response, minimising the impact of attacks.
- Cloud security and configuration management – Strengthen cloud security practices to mitigate risks associated with misconfigurations and poor API security in hybrid environments.
- Incident response and recovery – Develop comprehensive incident response plans to minimise downtime and restore operations swiftly after a cyberattack, preventing client trust.
- Regular vulnerability scanning – Conduct routine audits to identify and patch vulnerabilities in edge devices and systems proactively.
As the UAE’s hospitality sector expands, it faces increasing cyber threats that demand proactive defence strategies. By investing in robust cyber security measures, prioritising employee training, and leveraging advanced technologies, businesses can safeguard their digital infrastructure and protect clients data in an increasingly hostile digital landscape.
Discussion about this post