The link in the fake emails goes to a fake PayPal website located at hxxp://payment-travelhotelz.com that steals PayPal account credentials. Therefore, PayPal users who have been tricked by the fake emails are asked to change their PayPal account passwords and check their accounts for discrepancies or fraudulent activities report them to PayPal.
The "The Royal Surakarta Heritage Travel Reservations Hotel" PayPal Scam
[Booking Receipt] Your Travel Reservations Hotel Itinerary The Royal Surakarta Heritage 2018-01-06 - 2018-01-15.
service@paypaI.com <cs38reservations@pecahtelor1.com>
Thank you for booking with us!
Dear
Thank you for booking with us.
We have successfully charged amount $465.84 to your PayPaI, Cancel Booking Now
We are pleased to receive your booking and your booking details are as follows:
Booking ID: 201712281237540236.
Hotelbeds booking reference: 315-1026156.
Lead Guest Name: Shirley Kirstein.
Phone: 5872014161.
Hotel Name: The Royal Surakarta Heritage.
Hotel Address: Jl. Slamet Riyadi No. 6, Solo, Indonesia 57131 .
Hotel Telephone Number: 0062581556111.
Hotel Category: 5 STARS.
Check In - Check out: 2018-01-06 - 2018-01-15.
Room 1:
Room Name: SINGLE SUPERIOR,
Rate: USD 465.84,
Meal Type: BED AND BREAKFAST,
Occupants:
First Name: Nathan Last Name: Pamungkas (Adult).
Payable through MG Holiday, acting as agent for the service operating company,
details of which can be provided upon request. VAT: 203521162D, Reference: 325-1016556
Best Regards,
Customer Service, San’s Tour & Car Rentals
Paypal users should always go directly to www.paypal.com and sign into their accounts when they receive email notifications, instead of clicking on the links in the same email notification. Once they have sign-in, they will be notified of changes or updates. Doing this will prevent PayPal users from becoming victims of phishing scams.