If you’re planning a getaway and using Booking.com, be aware of a sophisticated scam targeting users of the platform. Between June 2023 and September 2024, fraudsters exploited hacked hotel accounts to steal a staggering £370,000 from unsuspecting travellers.
These scams often begin when criminals take over a legitimate hotel’s Booking.com account through phishing attacks. Using the account, they send realistic messages via email, in-app communication, or even WhatsApp, urging guests to make payments or share sensitive information. Victims report receiving messages claiming payment is urgently required to avoid cancellation or asking for credit card details.
How to Stay Safe
Booking.com and Action Fraud emphasise that no legitimate transaction on the platform will ask for credit card details via email, phone, or text. If you receive such a request, it’s essential to pause and verify directly with Booking.com or the hotel using contact details from the official website or app. Suspicious emails or texts should also be reported to report@phishing.gov.uk or 7726, respectively.
If you’re ever in doubt about a message’s authenticity, trust your instincts. Avoid clicking links or downloading attachments, and cross-check any payment requests against your original booking confirmation. Booking.com customer service is your best resource for clarifying unusual or urgent messages.
What to Do if You’re a Victim
If you’ve fallen victim to this scam, act quickly. Notify your bank to secure your accounts and report the incident to Action Fraud via their website or by calling 0300 123 2040. Scottish residents should contact Police Scotland at 101.
For detailed advice on how to protect yourself, visit Booking.com’s Safety Tips for Travellers or the government’s fraud prevention site, Stop Think Fraud.
By staying vigilant and informed, you can enjoy your travels without falling prey to these scams. Safe travels!