INTERNET fraudsters have targeted holidaymakers using a popular travel firm to steal their personal information.
Scammers nicked the brand name of one of the most well-known internet holiday websites to launch the con.
Expedia bosses confirmed an investigation has been launched after fears crooks had “unauthorised access” to customers’ details.
Unsuspecting travellers received an email making them aware of the security breach and phishing scam.
One Glasgow holidaymaker, travelling to Spain, said: “I’ve been told there is a risk, someone posing as an Expedia rep has had my name, phone number, email address and travel booking. It’s very worrying. You would expect your private details to be safe when booking a holiday.”
Phishing is the term used for attempting to acquire sensitive information, such as bank details.
The warning email, sent to some Expedia customers, reads: “We have recently been made aware of fraudulent emails and or SMS messages that were sent by an individual posing as a representative of our company and of the unauthorized access by that individual of your name, phone number, email address and travel booking.
“Please note that credit card data was not compromised.
“We are writing to confirm that these emails and/or SMS messages were neither sent nor authorised by Expedia.”
The association of travel agents, ABTA, the National Fraud Intelligence Bureau and national reporting centre, Action Fraud, have urged travellers to be vigilant.
Detective Chief Superintendent Dave Clark, said: “The internet has revolutionised the way we look for and book our holidays.
“The unfortunate reality is that it is also being exploited by fraudsters who use online offers of accommodation and flights that do not exist or promising bookings that are never made to rip off unsuspecting holidaymakers.”
An Expedia spokeswoman said: “We are aware of a scenario involving fraudulent communications to a proportion of consumers who have booked on our site from an individual claiming to represent our organisation, or the hotel at which they have booked a room.
“We have investigated this phishing incident thoroughly.
“Impacted customers are being or have been notified and advised of any appropriate action they may need to take.
“Regrettably, there is a risk of unauthorised access to your name, phone number, email address and travel booking.
“We can confirm that the data which could have been accessed is limited to your name, phone number, email address and travel booking.
“We can confirm your credit card data has not compromised as a result of this issue.” Bosses at the travel firm stressed the Expedia website had not been hacked.
The company also confirmed “enhanced security measures” had been implemented.
The spokeswoman added: “We sincerely apologise for any inconvenience this incident may have caused.”
Comments & Moderation
Readers’ comments: You are personally liable for the content of any comments you upload to this website, so please act responsibly. We do not pre-moderate or monitor readers’ comments appearing on our websites, but we do post-moderate in response to complaints we receive or otherwise when a potential problem comes to our attention. You can make a complaint by using the ‘report this post’ link . We may then apply our discretion under the user terms to amend or delete comments.
Post moderation is undertaken full-time 9am-6pm on weekdays, and on a part-time basis outwith those hours.
Read the rules here