I'm not clear how this is different from scammers targeting humans? If anything, I'd expect it to be easier to set up the LLM agent to have secure/cryptographical validation of the providers, to prevent against the sorts of traps that humans fall into.

In the simplest case, we could just have trusted authorities provide lists of verified booking partners, same as e.g. Google Flights does now.