PanicStation.org
UK USA
uk Travel, documents & being abroad booking changed unexpectedly • travel account hacked • airline account accessed • hotel booking changed • trip altered without consent • suspicious itinerary change • unauthorised travel booking • travel app compromised • booking confirmation looks wrong • account takeover travel • loyalty points stolen • unknown traveller added • payment method used in account • email about booking change • travel login alert • someone accessed my booking • urgent travel plans disrupted • online travel agent account hacked

What to do if…
you receive a notice that your booking was changed and you suspect someone accessed your travel account

Short answer

Treat it as an account takeover: secure the account (and the email behind it) and contact the travel company’s fraud/support channel immediately to lock the booking and stop further changes.

Do not do these things

  • Don’t click “confirm change”, “verify”, or “log in” links in the message until you’ve reached the account via the official app/site you normally use.
  • Don’t assume it’s “just a glitch” if names, dates, airports, seats, or payment details changed.
  • Don’t keep re-trying passwords over and over (it can trigger lockouts while the attacker keeps trying too).
  • Don’t share booking references, passport details, or screenshots containing barcodes/PNRs in public or with unknown “support” accounts.
  • Don’t wait until the day of travel if anything time-critical (flights/rail/ferry check-in, entry authorisations/visas) could be affected.

What to do now

  1. Pause and verify the alert safely

    • Open the airline/hotel/rail operator’s official app or type the website address you know (not via the message) and check: passenger names, dates/times, departure/arrival points, seat/room, contact email/phone on file, and payment method shown.
    • If the message claims an urgent deadline, treat that as extra reason to verify via the official channel.

  2. Lock down the travel account immediately

    • Change the password to a new, long one you haven’t used elsewhere.
    • Turn on 2-step verification (2FA) if offered.
    • Sign out of all devices / remove unknown devices or sessions (many travel accounts show “logged in devices”).
    • Check for any “linked” accounts (Google/Apple/Facebook), and any saved travellers you don’t recognise, and remove them if you can do so safely.

  3. Secure the email account that receives booking emails (this matters most)

    • Change your email password and enable 2FA.
    • Check for rules/filters/forwarding (e.g., “auto-archive”, “mark as read”, “forward to…”) that could hide security emails or itinerary changes, and delete anything you didn’t set.
    • Review recent sign-ins / devices and sign out anything unfamiliar.

  4. Contact the travel company using their official support path and ask for specific actions

    • Tell them: “I believe this is unauthorised access / account takeover. Please freeze changes and add a note to the booking.”
    • Ask them to: lock the booking against further online changes; confirm the current itinerary; confirm the payment method used; and advise whether any new tickets/vouchers were issued.
    • If the booking is through an online travel agent (OTA), contact the OTA and the airline/hotel if possible, because control can sit in different places.

  5. Check for unauthorised payments and act fast

    • Look at the card/bank account used for the booking for any new transactions (including small “test” amounts).
    • If anything is unauthorised, contact your bank/card provider immediately to report it and ask them what to do next (e.g., card replacement, dispute).
    • Take screenshots of the changed itinerary and any receipts/timestamps while you still can.

  6. Protect the trip if you’re travelling soon

    • If travel is within 48 hours, prioritise: correct passenger name(s), passport/ID details (if stored), and the ability to check in.
    • If you can, add a secondary contact method you control (phone number) and remove any you don’t recognise.
    • If you suspect someone could turn up and use the booking, ask the provider what identity checks apply and whether they can add an extra security note on the reservation.

  7. Report the fraud in the UK (for tracking and support)

    • If you’ve lost money or details were misused, report it to Report Fraud if you live in England, Wales, or Northern Ireland.
    • If you live in Scotland (or the crime happened there), report it to Police Scotland (typically via 101 for non-emergencies, or their online contact options).
    • Keep your reference number with your screenshots and bank notes.

What can wait

  • You don’t need to decide right now whether to change all your other passwords—focus on the travel account + your email first.
  • You don’t need to argue with customer service about liability in the first call—first goal is stop further changes and stabilise the booking.
  • You don’t need to post in forums or social media for help—keep details private until you’re secure.

Important reassurance

It’s common to feel shaken by this, especially when travel plans are on the line. A calm, fast sequence—secure access, freeze the booking, then handle payments—usually prevents the worst outcomes and gives you back control.

Scope note

This covers first steps to stabilise a suspected travel-account takeover. Later steps (insurance claims, formal complaints, longer identity protection) may be appropriate once your trip and accounts are secure.

Important note

This is general information, not legal, financial, or law-enforcement advice. Processes and options vary by provider and situation; if you’re unsure, use official support channels and your bank’s fraud team.

Additional Resources
Support us