TL;DR: Organisers never sell attendee data. Verify bank details and suppliers. Use official channels for hotels and logistics. Train staff on social engineering.

Last updated: • Publisher: B2B Growth Hub

1) Pre‑Expo Scams

Fake attendee lists & data sales

How it works: Unsolicited emails offer “verified attendee databases.”

  • Red flags: “opt‑in list”, “complete database”, urgent discounts.
  • Reality: Data is scraped or fabricated; selling is likely unlawful (privacy/GDPR).
  • Action: Ignore, block, and report to the organiser.
Fake hotel / travel partners
  • Verify via the event’s official accommodation page or venue.
  • Beware prepayment demands to personal accounts.
  • Use corporate cards with fraud protection.
Fake logistics / customs brokers
  • Only book from organiser‑approved supplier list.
  • Check legal entity, insured value, and references.
  • Never ship goods before contract + insurance confirmation.
Invoice / payment redirection
  • Match bank details against your signed contract.
  • Call your known account manager on a verified number before paying.
  • Enable dual approval for payments.
Directory subscription traps
  • Hidden multi‑year obligations in the small print.
  • Never sign unsolicited “data confirmation” forms.
  • Escalate to legal if pressured.

2) On‑Site Scams

Equipment theft & impostors
  • Keep laptops tethered; lock storage when unmanned.
  • Badge‑check anyone handling your items.
  • Use asset tags and inventory lists.
Hidden charges from unofficial vendors
  • Get written quotes; avoid verbal add‑ons.
  • Use organiser‑approved providers only.
  • Report aggressive upselling to floor management.
Competitor data harvesting
  • Gate sensitive demos; use NDAs for deep dives.
  • Brief staff on information boundaries.
  • Prohibit photography of prototypes.

3) Post‑Expo Scams

Fake awards & pay‑to‑publish

Emails claim you’ve “won”—release only after you pay a trophy/listing fee. Verify with the organiser.

Phishing & impersonation
  • Scrutinise sender domains and URLs.
  • Don’t enter credentials from email links; browse directly to portals.
  • Enable MFA on exhibitor portals and CRMs.
Persistent directory contracts

If you inadvertently signed, seek legal advice; respond in writing to cancel and cite misrepresentation where applicable.

4) Prevention Checklist

Governance

  • Single source of truth: exhibitor portal + supplier list.
  • Dual approval on payments & supplier onboarding.
  • Contracts: verify legal entity + bank letter.

People

  • Brief team on social‑engineering red flags.
  • Stand duty rota—no unattended assets.
  • Use named contacts and codewords for releases.

Tech

  • Device encryption, MFA, guest Wi‑Fi segmentation.
  • Asset tags and inventory; GPS for high‑value kits.
  • Secure file sharing—no public links for sensitive decks.