Australian Travellers Warned of Sophisticated Booking.com Phishing Scams

Australian travellers are being urged to exercise extreme caution when managing accommodation bookings following a rise in sophisticated scams. Reports indicate that users of the platform Booking.com have been targeted by phishing attacks designed to harvest personal information, payment details, and money. These scams are particularly concerning due to the high level of detail involved, which often includes legitimate booking references, hotel names, and travel dates.

Cybersecurity experts have highlighted that reservation data is highly valuable to criminals. Because travel bookings contain sensitive information such as names, travel dates, and contact details, they are prime targets for cybercriminals. Several travellers have reported receiving messages that appeared to originate directly from their accommodation providers shortly after confirming their bookings. These fraudulent communications often create a sense of urgency, claiming that reservations will be cancelled unless immediate action is taken to update payment information.

Investigations suggest that these attacks often begin when criminals gain unauthorised access to hotel or accommodation booking systems, frequently through phishing emails sent to staff. Once access is secured, scammers can view genuine reservation records and use that data to craft highly convincing messages. This tactic, sometimes referred to as 'reservation hijacking,' has become increasingly common on an international scale, making it difficult for even vigilant travellers to distinguish between legitimate correspondence and fraudulent attempts.

Recent reports have highlighted instances where travellers received messages via platforms like Whats App containing accurate booking details and specific payment requests. The inclusion of such precise information often leads victims to believe the communication is authentic. As the sophistication of these scams continues to evolve, experts warn that traditional indicators of phishing may not always be present, necessitating a higher level of scrutiny for all travel-related correspondence.

National figures indicate that hundreds of complaints relating to Booking.com have been lodged with Australian consumer agencies over the past two years, covering a range of issues including scam-related concerns. A spokesperson for Booking.com stated that the company remains committed to protecting its customers and partners and is continuing to strengthen its security measures. The company advises users to report any suspicious messages immediately and to verify any payment requests through official, confirmed channels.

As Australians continue to plan both domestic and international holidays, experts emphasise that awareness remains the most effective defence against these threats. Travellers are urged to treat any unexpected request for payment with caution, even if the message appears to contain accurate booking information. Further details may be updated as more information becomes available.

Australian travellers are being warned to exercise caution when managing accommodation bookings after a surge in sophisticated scams targeting customers through fake messages linked to genuine travel reservations. The warning follows reports that dozens of Booking.com users have recently been targeted by phishing attacks designed to steal personal information, payment details and money. The scam activity has raised concerns about the security of travel booking information, with cybersecurity experts describing reservation data as highly valuable to criminals. Travel bookings often contain detailed personal information, including names, travel dates, accommodation details, contact information and payment records, making them attractive targets for cybercriminals.

Several travellers reported receiving messages that appeared to come directly from hotels or accommodation providers shortly after making reservations. The fraudulent communications often included legitimate booking references, hotel names and travel dates, making them difficult to distinguish from genuine correspondence. Victims were instructed to update payment information or make urgent payments to avoid cancellation of their reservations.

One Western Australian traveller told ABC News that scammers contacted him after he booked accommodation for an overseas holiday. The messages contained accurate booking information and created a sense of urgency by claiming the reservation would be cancelled if immediate action was not taken. Another traveller reported receiving a Whats App message containing his hotel details, booking dates and payment information request, which initially appeared authentic.

Cybersecurity specialists say these attacks often begin when criminals gain access to hotel or accommodation booking systems through phishing emails sent to hotel staff. Once access is obtained, scammers can view reservation records and use the information to craft highly convincing fraudulent messages aimed at travellers. The tactic, sometimes referred to as "reservation hijacking," has become increasingly common internationally.

Experts warn that the sophistication of these scams is increasing as criminals become more adept at exploiting legitimate booking information. Unlike traditional phishing attempts that rely on generic messages, these scams often contain accurate reservation details that can make travellers believe the communication is genuine.

Consumer complaints involving online travel bookings have also increased. National figures cited by ABC News indicate that hundreds of complaints relating to Booking.com have been lodged with Australian consumer agencies over the past two years, covering issues ranging from cancellations and refunds to scam-related concerns.

A spokesperson for booking.com⁠ said the company remains committed to protecting customers and partners while continuing to strengthen security measures. The company advises users to report suspicious messages immediately and to verify any payment requests through official channels.

As Australians continue planning domestic and international holidays, experts say awareness remains the most effective defence against increasingly sophisticated travel-related scams. Travellers are urged to carefully check all communications and treat any unexpected payment request with caution, even if it appears to contain legitimate booking information.