Fraud and cyber criminals keep evolving, making detection and avoidance harder for users. As online security improves, fraudsters adopt more complex methods to steal personal information and money.
These dangerous fraud strategies push daily actions to higher caution levels when surfing the web. Users should never accept anything at face value. Always be wary, even in seemingly routine moves. Reliable resources emphasize that new scams like phishing appear on social networks, often tied to apps used for bookings or chat communications.
A particularly dangerous scam
A profile on TikTok named Tax for everyone (@tu_blog_fiscal) highlighted a cybercrime affecting one of the world’s largest travel platforms. The warning is clear: this is not a routine phishing attempt. Reported comments describe emails with obvious spelling errors or coming from dubious addresses, which is a common red flag for fraud within the app itself.
The scammer, according to the account manager, hacks the reservation system and impersonates the hotel. Messages arrive close to check-in time, claiming a payment issue and urging payment through a link. If clicked, it compromises the victim and can ruin travel plans. The approach is designed to push immediate action while the user is preoccupied with arrival logistics.
The tactic is hard to detect because reservations are typically paid for 2 or 3 days ahead. The scammer may claim a need for urgent verification or payment to secure the booking, and insist that the user solve the issue through a direct link. In many cases a link appears to be a private checkout for payment verification.
Typical messaging asks for card verification or confirms card details. The core pattern remains consistent: a chat message on the platform prompts the user to reveal sensitive information or click a compromised link. In one viral post a user described receiving a payment link pretending to verify the card and stating that verification is necessary to complete the reservation.
Another widely discussed instance involved a London user on X (formerly Twitter) who received two urgent messages from a booking app about a year-end reservation. The messages claimed that card information must be confirmed or the booking would be canceled. The chat then directs the user to a private link to resolve the issue.
The link often starts with a familiar domain but may redirect to a nonfunctional page or a site that asks for personal and banking details. In some screenshots, mismatched phone country prefixes reveal inconsistent information that strengthens suspicion about the scam.
Who bears responsibility?
When a British user encountered these signs, the decision was to contact customer service to explain the situation. The response emphasized that a hacker or fraudster might be behind the call rather than an official customer service channel, underscoring the risk of social engineering. The frustration is real when support staff appear unable to resolve the issue promptly, leaving the user feeling abandoned.
Join the information channel
Many internet users report similar experiences on social networks. Some ask whether the travel platform or bank should take responsibility. Others recount positive outcomes where hotels or banks responded decisively and stopped further unauthorized charges. The varied responses reflect real-world frustration and the need for clear protection measures from service providers.
Protection discussions shift between the banking institution and the hotel involved. Some users report banks not taking action unless card details are misused or the user consents. Others share stories of where the hotel or platform intervened and blocked the fraudulent activity, protecting the customer from further loss.
Response to reservation fraud
Travel platforms state that these fraud attempts occur when perpetrators impersonate hotel or apartment staff. They stress that their systems and infrastructure have not been breached in any way. There is a noted uptick in cybercrime, particularly against partners such as hotels and property managers. Customers are advised to review payment policies and to contact the platform directly if anything looks suspicious.
In the meantime the platform emphasizes that it cannot be held responsible for these incidents. It points to ongoing security training and awareness efforts for partners, alongside enhanced verification processes to counter such crimes. Users are encouraged to verify official channels and to report suspicious messages promptly to prevent broader impact.