Booking.com users are being warned about a scam by fraudsters posing as accommodation providers. The user typically receives an email claiming there is an issue with their Booking.com reservation and prompting them to re-enter payment details. The fraudsters lend credibility to the scams by creating websites that mimic official platforms. However, the fake pages can be identified by their web addresses.
According to Slovak cybersecurity firm ESET, the Telekopye bot, accessible via the Russian Telegram network, is behind the attacks. The bot provides tools for phishing and other scams, used by organised groups of thieves known as "Neanderthals."
“Neanderthals don’t need technical skills; the bot does everything for them in seconds,” explains expert Radek Jizba, who has analysed the system. Initially targeting online marketplaces like Vinted and eBay, Telekopye has now shifted focus to platforms such as Booking.com and Airbnb.
Fraudsters communicate via WhatsApp, employing sophisticated scenarios and weaving “personal stories” to gain victims’ trust. They deliberately delay responses to create the impression of genuine interaction. “Their disguise is nearly flawless,” warns Jizba.
Millions in damages
Czech and Ukrainian investigators uncovered €5 million in fraud in 2021, where scammers created fake websites for courier services and banks. The groups included programmers, anonymous members, and coordinators.
Similar scams resurface during the holiday season, particularly through services like parcel delivery firm Packeta. Fraudsters claim parcels require payment or send unsolicited cash-on-delivery packages containing worthless items.
Staying safe from scams
Prevention is key. "If a parcel isn’t listed in the official app, it’s likely a scam," advises Radka Laky, Packeta’s customer service manager. She also stresses the importance of avoiding unfamiliar e-shops and fake payment gateways.
A golden rule for scammers, as Jizba highlights, is “work more, talk less” – a principle that helps fraud rings avoid detection.