Skip to main content



booking.com scam email


Unveiling the Booking.com Scam: A Wave of Deceptive Emails Hits Global Travelers

In recent months, a sophisticated phishing scam targeting Booking.com customers has been making headlines, raising concerns about the security of personal information and financial data. Reports from reputable sources such as The Guardian, Sky News, and Help Net Security have shed light on the alarming surge of scam emails that are cunningly designed to trick unsuspecting travelers.

The scam, first reported in October 2023, involves fraudulent emails posing as legitimate Booking.com communications. These emails, often appearing convincingly authentic, ask recipients to provide sensitive information such as bank card details under the pretext of confirming reservations. Threats of reservation cancellations loom over those who hesitate to comply, creating a sense of urgency that plays into the hands of the scammers.

Booking.com customers are urged to be vigilant, as the scammers have taken advantage of various channels, including email and the messaging feature in the Booking.com app. The deceptive emails often use official-sounding addresses, such as 'noreply@booking.com,' leading travelers to believe they are genuine. However, Booking.com and security experts emphasize that any emails from addresses like “support@booking-103266.com” are not from the legitimate platform and should be reported as spam.

The scope of the scam is not confined to a specific region, as reports from The Brussels Times highlight its impact on people in Belgium, while Stuff.co.nz reveals that some of Booking.com's accommodation partners have been targeted by phishing emails. The widespread nature of the scam is evident in the international reports from New Zealand Herald, Today Online, and NL Times.

Notably, the scammers have evolved their tactics, as highlighted by Heimdal Security's report on a phishing campaign demanding credit card details through both email and WhatsApp. This demonstrates a level of sophistication that catches customers off guard, emphasizing the need for heightened awareness and caution.

The situation escalated when scammers began hijacking hotels' Booking.com accounts, as reported by Help Net Security. This new twist allowed scammers to use legitimate accounts in a hotel booking scam, tricking guests and raising concerns about the overall security of the platform.

The impact of the scam has not been limited to individuals, as RetailWire reports on fraudsters targeting Booking.com customers by hijacking accounts via hotels. This method involves using user details to deceive guests into sharing sensitive information, leading to a broader challenge for both travelers and the platform.

In response to the growing threat, Booking.com has faced accusations of a data breach, as reported by TecSec and Ars Technica. The mysterious leak of Booking.com reservation data has fueled concerns about the extent of the compromise and whether customer information is at risk.

As travelers navigate the digital landscape of hotel bookings, the Booking.com scam serves as a stark reminder to exercise caution and verify the legitimacy of communications. With the travel industry facing increased cybersecurity challenges, customers are urged to stay informed, report suspicious emails, and follow security guidelines provided by Booking.com to protect their personal and financial information from falling into the hands of scammers.