Title: Travelers Falling Victim to Phishing Scam on Booking.com
Subtitle: Tourists lose thousands of dollars as hackers exploit Booking.com’s email system
Stockholm, Sweden – Cornelia Falk and her husband Jörgen Falk had been eagerly planning their winter getaway to a warmer climate. After an exhaustive search for the perfect hotel in Gran Canaria, they finally settled on one they found on the popular booking site, Booking.se. Opting to pay on the spot, they confirmed their reservation and looked forward to their January getaway.
However, their excitement turned into shock when Cornelia received an email purportedly from Booking.com, from the email address “[email protected]”. The message claimed that in order to secure her booking, Cornelia needed to provide her card details within 12 hours. Worried about losing the hotel they had carefully chosen, Cornelia filled in the requested information without hesitation.
Days later, Cornelia received the same email again, which raised her suspicions. Seeking clarification, she contacted Booking.com’s customer service and was advised to ignore the email. Unfortunately, it was too late. Approximately SEK 21,000 was fraudulently withdrawn from Cornelia’s card.
“It’s so humiliating,” Cornelia expressed her frustration. Despite her efforts to seek resolution through customer service, she received no help or explanation. Eventually, she reported the incident to the General Complaints Board (ARN) and filed a police report.
Cornelia is not alone in her experience. Several other travelers who booked hotels through Booking.com have fallen victim to similar phishing emails, resulting in significant financial losses. The Guardian has reported that the site’s email system is suspected to have been hacked.
When approached for comment, Booking.com denied any breach on their part, instead shifting responsibility to the hotels involved. In a statement to The Guardian, they asserted, “Booking’s system has not been compromised in any way, but we are acutely aware of the consequences of this type of third-party scam.” They encouraged customers to review the payment policies of the specific property they booked.
Interestingly, the hotels implicated claim that the issue lies with Booking.com. Cornelia’s hotel, for example, had repeatedly warned Booking.com about the phishing emails. “I called the hotel and the reception immediately said ‘this is phishing.’ I had never heard of it before, but she said they warned Booking about this several times,” Cornelia shared.
Expressen reached out to Booking.com for further clarification, but the company has yet to respond.
Incidents like these highlight the need for travelers to remain vigilant when entering personal information online. It serves as a reminder to always verify the authenticity of emails before providing sensitive details. Meanwhile, Booking.com and the affected hotels must work together to address this alarming issue and ensure the safety of their customers.
In the face of such scams, it is crucial to exercise caution and stay informed to protect oneself from falling victim to cybercriminals.