Increasing number of customers fall prey to the 'confirmation' email scam—Are you one of them?

Disclaimer: The names with asterisk (*) have been changed to protect the privacy of the person in this story.

It was recently revealed that's email system has been compromised and its customers’ credit card details were exposed.

But it has also come to light that the company has been sending emails to certain users, warning them to cancel their cards.

Meanwhile, more customers have stepped forward to share their similar experiences with the scam.

The affected customers had either checked into or were due to check into, a hotel they had booked through's website or app.

They received an email from the official [email protected] address, warning that their stay might have to be cancelled—unless they provided their bank card details via an embedded link.

A customer has shared a confirmation email that they received, which they believed was from Credit: Facebook had previously denied any system breach when the initial report was published and attributed the suspicious messages to breaches in the email systems of partner hotels.

However, recent developments suggested a more complex scenario.

This week, it was revealed that has sent email warnings to its customers that their card details may have been compromised. The company stated this was due to 'potentially suspicious activity' on a specific accommodation provider's account.

One customer, IA*, whose name has been hidden to protect their privacy, was contacted by the company despite not having made a reservation since June.

The email IA* received read: 'We recently noticed some suspicious activity from an unknown external device attempting to access certain systems, using property logins which may have unfortunately led to unauthorised third parties being able to access your reservation details, including payment card data.' has acknowledged that some of their ‘accommodation providers have been targeted by very convincing and sophisticated phishing tactics' which 'enables the fraudsters to impersonate the accommodation and communicate with guests via email or messages'.

Due to this, the company has been continuously updating and expanding the cybersecurity section of its partner hub to include even more information on malware and phishing.

In light of these events, the advice is clear: be extremely wary of any emails or contact that appear to come from or its partner hotels.

Do not follow any account verification links sent out, and phone the hotel directly if asked for an additional payment.

A traveller who was nearly a victim of this scam and shared their experience to warn others. You can read the full story here.

Understanding Phishing Scams and How to Protect Yourself

Phishing scams are fraudulent attempts to obtain sensitive information such as usernames, passwords, and credit card details by disguising oneself as a trustworthy entity in an electronic communication. In this case, the scammers are impersonating and its partner hotels.

Here are some tips to protect yourself from phishing scams:

1. Be suspicious of unsolicited communications: Phishing scams often start with unexpected or unsolicited emails, text messages, or phone calls claiming to be from a legitimate organisation.

2. Don't click on links or download attachments from unknown sources: These could lead to malicious websites or contain malware.

3. Verify the sender's identity: If you receive a suspicious email or message, contact the organisation using a known and trusted phone number or website.

4. Keep your devices and software up to date: Regularly updating your devices and software can help protect against the latest threats.

5. Use strong, unique passwords: Using a different password for each online account can help prevent one compromised account from leading to others.

6. Enable two-factor authentication: This adds an extra layer of security to your online accounts by requiring two types of identification before you can log in.

Remember, it's always better to be safe than sorry. If you suspect a phishing scam has targeted you, report it to your local law enforcement agency and the organisation that was impersonated.

You can also report it to Scamwatch here:

Key Takeaways
  •'s email system has been hacked, compromising several customers' credit card details.
  • The company has been sending warning emails to its customers about potentially compromised card details due to 'suspicious activity' on its service providers' accounts.
  • attributed the hacking incident to the email systems of its partner hotels being breached.
  • Customers were advised to be cautious of any emails or contacts that appear to come from or its partner hotels and not to follow any account verification links sent in these messages.

Have you ever encountered a similar situation, members? Share your experiences and tips in the comments below.

Join the conversation

News, deals, games, and bargains for Aussies over 60. From everyday expenses like groceries and eating out, to electronics, fashion and travel, the club is all about helping you make your money go further.

Seniors Discount Club

The SDC searches for the best deals, discounts, and bargains for Aussies over 60. From everyday expenses like groceries and eating out, to electronics, fashion and travel, the club is all about helping you make your money go further.
  1. New members
  2. Jokes & fun
  3. Photography
  4. Nostalgia / Yesterday's Australia
  5. Food and Lifestyle
  6. Money Saving Hacks
  7. Offtopic / Everything else

Latest Articles

  • We believe that retirement should be a time to relax and enjoy life, not worry about money. That's why we're here to help our members make the most of their retirement years. If you're over 60 and looking for ways to save money, connect with others, and have a laugh, we’d love to have you aboard.
  • Advertise with us

User Menu

Enjoyed Reading our Story?

  • Share this forum to your loved ones.
Change Weather Postcode×
Change Petrol Postcode×