PanicStation.org
UK USA
us Travel, documents & being abroad booking changed unexpectedly • travel account hacked • airline account accessed • hotel booking changed • trip altered without consent • suspicious itinerary change • unauthorized travel booking • travel app compromised • booking confirmation looks wrong • account takeover travel • loyalty miles stolen • unknown passenger added • payment method used in account • email about booking change • travel login alert • someone accessed my booking • urgent travel plans disrupted • online travel agency account hacked

What to do if…
you receive a notice that your booking was changed and you suspect someone accessed your travel account

Short answer

Assume account takeover: secure the travel account and the email behind it, then contact the travel company to freeze the reservation and stop further changes.

Do not do these things

  • Don’t click login/verification links in the alert message until you’ve reached the site/app through the official route you normally use.
  • Don’t ignore “minor” changes (seat swaps, contact email changes, new saved traveler) — they can be a setup for bigger fraud.
  • Don’t send documents or booking codes to “support” found via social media DMs or random numbers in the email.
  • Don’t delay if you travel soon; last-minute changes can block check-in or cause ID/name mismatches.

What to do now

  1. Confirm what changed using a safe path

    • Open the provider’s official app or type the known website yourself and check: passenger name(s), dates/times, airports/cities, ticket status, contact email/phone on file, and payment method.
    • If the alert pressures you with a deadline, treat it as a reason to verify independently, not to act through the link.

  2. Secure the travel account right away

    • Change the password (unique, long).
    • Turn on two-factor authentication (2FA) if available.
    • Sign out of other devices / remove unfamiliar devices or sessions.
    • Review saved traveler profiles, stored payment methods, and “trusted devices” and delete anything you don’t recognize.

  3. Secure the email account tied to the booking

    • Change the email password and enable 2FA.
    • Check for forwarding addresses, mailbox rules/filters, and recovery email/phone changes you didn’t make.
    • Review recent sign-ins and sign out of unknown devices.

  4. Call the travel provider and ask for specific controls

    • Say: “I suspect unauthorized access to my account/booking. Please freeze changes and add a security note.”
    • Ask them to: lock the reservation against online changes; confirm the current itinerary and ticket status; confirm whether a new ticket/voucher was issued; and confirm what payment method was used.
    • If it’s booked through an online travel agency (OTA), contact the OTA and the airline/hotel when possible (each may control different parts).

  5. Check your payment accounts and respond quickly

    • Review card/bank activity for new charges or small “test” transactions.
    • If anything is unauthorized, contact your card issuer/bank fraud department immediately and follow their dispute guidance.
    • Save evidence now: screenshots of the changed itinerary, confirmation numbers, timestamps, and any emails.

  6. If you’re traveling soon, protect check-in and identity matching

    • Make sure the name on the reservation matches your ID/passport exactly.
    • Confirm you can access boarding passes / check-in.
    • Ask whether the provider can require extra verification or place a “do not change without phone verification” note (wording varies).

  7. Use official U.S. reporting/help channels if identity details or money were misused

    • If this involves identity theft (accounts opened, personal data misused, or you need a recovery plan), use the federal identity theft recovery site to document and generate steps.
    • For air-travel consumer issues, try the airline or ticket agent first; if it can’t be resolved to your satisfaction, you can file an air travel consumer complaint with the U.S. Department of Transportation.

What can wait

  • You don’t need to overhaul every account right now—start with email + the travel account + the payment method involved.
  • You don’t need to decide today whether to pursue formal complaints—first stabilize the booking and stop further changes.
  • You don’t need to publicly warn others with screenshots that include confirmation numbers; keep details private until you’re safe.

Important reassurance

This kind of message can feel instantly destabilizing because it affects your ability to travel. Taking a few focused steps—secure access, freeze changes, then handle payments—usually stops the damage and buys you time.

Scope note

This is first-step guidance for a suspected travel-account compromise. Longer follow-up (credit monitoring, formal disputes, extended identity recovery) can come after the immediate situation is stabilized.

Important note

This is general information, not legal or financial advice. Providers and banks have different procedures; if you’re unsure, use official support channels and your bank’s fraud department.

Additional Resources
Support us