This Reservation Isn’t What It Looks Like
A new email scam is making the rounds, and it’s catching people at exactly the wrong time—right before a trip.
The message appears to be a routine hotel booking confirmation. It claims you’ve made a reservation and warns that you must confirm it within 24 hours or risk losing your room. A convenient link is included so you can “secure” your stay.
If you’re traveling during a busy holiday or business season, this email can feel believable. You might assume it’s tied to plans you’ve already made and click without a second thought.
Unfortunately, that’s exactly what scammers are counting on.
How the scam works
The link in the email doesn’t lead to a real hotel or booking platform. Instead, it opens a convincing—but fake—confirmation page designed by cybercriminals. You’re instructed to enter your credit card details to finalize or hold the reservation.
Once that information is submitted, it goes straight to the attackers. No reservation is confirmed, and your payment details may be used for fraud, sold, or reused in future scams.
How to protect yourself
Keep these best practices in mind to avoid falling for travel-related phishing emails:
Watch for urgency. Scammers rely on pressure tactics like short deadlines to push quick decisions. Slow down and evaluate before clicking.
Be skeptical of payment requests. Reputable travel companies collect payment at the time of booking—not later through surprise confirmation emails.
Verify independently. Check your reservation by visiting the official website or mobile app directly, or by contacting the hotel using trusted contact details. Avoid clicking links from unsolicited emails.
A message that looks polished and professional isn’t always legitimate. When it comes to unexpected confirmations, a few extra seconds of caution can save you from costly consequences.