Users of the popular travel platform Booking.com are being warned of a fraud scheme targeting hotel accounts, leading to losses of £370,000 between June 2023 and September 2024, according to reports from Action Fraud.
Fraudsters have been taking over hotel accounts on the platform and contacting customers with fake requests for payments or credit card details. These messages are often sent via in-app communication, emails, or WhatsApp and appear to be legitimate as they originate from the compromised accounts of hotels where users have already made reservations.
How the Scam Works
The fraudulent activity reportedly stems from phishing attacks on hotel or accommodation providers, rather than a breach of Booking.com’s backend systems. Once an account is compromised, the fraudsters impersonate the hotel and deceive customers into making payments or sharing sensitive information.
Advice from Action Fraud
Adam Mercer, Deputy Head of Action Fraud, said:
“With more than 500 reports made to Action Fraud, those who have booked a holiday on the Booking.com platform should stay alert to any unexpected emails or messages from a hotel using the Booking.com platform, as their account could have been taken over by a criminal.
“If you receive an unexpected request asking for bank details or credit card details, it could be a fraudster. Contact Booking.com or the organisation directly if you’re unsure.”
He urged users to report suspicious emails to [email protected] or forward fraudulent texts to 7726.
How to Protect Yourself
Booking.com and Action Fraud offer the following tips to avoid falling victim to scams:
- No legitimate transaction will require your credit card details via phone, email, or text – Booking.com never requests payment this way.
- Verify communication from hotels before providing payment details. Contact the hotel or Booking.com Customer Service directly using details from their official website or app.
- Treat urgent payment requests with caution – Confirm these requests with Booking.com.
- Avoid clicking on suspicious links or downloading files from unsolicited messages.
- Double-check payment requests that don’t match the details in your original booking confirmation.
For more safety advice, visit Booking.com’s Safety Tips for Travellers page.
What to Do if You’re Targeted
- If you receive a suspicious email, forward it to [email protected].
- Fraudulent text messages can be forwarded to 7726.
- If you’ve lost money or shared financial information, immediately notify your bank and report the incident to Action Fraud via their online portal or by calling 0300 123 2040. In Scotland, contact Police Scotland on 101.
Conclusion
With over 532 reports of this scam, users of Booking.com are urged to stay vigilant and take precautions to protect their accounts and personal information while enjoying a safe and stress-free holiday experience.
