Booking.com Impersonation Scams
Scammers impersonate Booking.com — and sometimes compromise real hotel accounts on the platform — to redirect guest payments. Booking.com will never ask you to pay again for a booking already confirmed through the platform.
Last reviewed: 1 June 2026
Booking.com has faced a sophisticated impersonation threat where fraudsters send convincing messages through the platform itself after compromising hotel staff accounts. Guests receive what appears to be a legitimate platform notification asking them to re-enter payment details to prevent cancellation — but the link leads to a fraudulent payment page.
The scam exploits the trust guests have in messages received through what looks like the official Booking.com system. Recognising that a confirmed booking should never require re-payment through an unsolicited link is the key defence.
How scammers impersonate it
- Compromising hotel partner accounts to send fraudulent payment requests through the Booking.com messaging system
- Sending phishing emails replicating Booking.com's design claiming a booking payment failed
- Creating fake Booking.com websites used in sponsored search ads
- Calling guests posing as Booking.com support to confirm card details for a 'booking hold'
- Sending fake cancellation notices that require re-booking through a phishing link
What the real organisation never does
- Ask you to re-enter payment details via a link in a message after a booking is confirmed
- Contact you to say your payment failed and demand immediate re-payment through an external link
- Request your full card number via phone or messaging chat
- Ask for payment outside the secure Booking.com checkout
Common red flags
- In-platform message from a hotel asking you to click a link and re-enter your card details
- Email about a booking cancellation unless re-payment is made immediately
- Link in a Booking.com message that leads to a domain other than booking.com
- Urgency: 'Your reservation will be cancelled in 2 hours unless you update your payment'
- Phone call from someone claiming to be Booking.com asking for your card number
Sanitized example messages
Illustrative, sanitized examples. Personal details are replaced with placeholders such as [phone number] and [fake link].
Platform message from 'hotel': 'Your booking requires payment confirmation. Please visit [fake link] to avoid cancellation.'
Email: 'Booking.com Notice: Your payment for [hotel] was declined. Re-enter your card details at [fake link] within 24 hours.'
How to verify
- Log into booking.com directly to check your reservation status — do not follow links in messages
- Genuine payment issues will always be shown inside your Booking.com account dashboard
- Contact Booking.com customer service via the Help section inside the app or website
- Be suspicious of any message — even one that appears in-platform — asking for payment re-entry
What to do if you're targeted
- Do not re-enter payment details — access your booking at booking.com directly
- Report the suspicious message to Booking.com via their fraud reporting form
- If card details were entered, contact your bank to block and replace the card
Frequently asked questions
I got a message through Booking.com asking me to pay again — can that be real?
Booking.com does not request re-payment of already confirmed bookings through chat messages. Even if the message arrives inside the platform, treat it with suspicion and verify through your booking dashboard.