An agent contacted eTNW after receiving an email that appeared to be a booking confirmation sent by SAA and urging the recipient to click on one of two links to either print an itinerary or cancel the ticket.
The agent became suspicious as the wording was unusual and she had not made any bookings for her client. She also noticed that the links were not actually directed to the airline’s website.
“We would like to advise our customers that this phishing scam features from time to time and targets airline customers, as a way of getting to credit card and Voyager log-in details, as well as their personal information,” says SAA spokesperson, Tlali Tlali.
The scam involves emails thanking customers for their purchase, stating that their booking is confirmed, giving a booking reference number as well as the credit card charge and then asking the customer to follow a link.
Tlali says these emails are not from SAA, as is wrongfully stated in the email. “We advise that in the event agents receive such emails, they should delete them immediately and not enter any personal information.
“Furthermore, we would like to advise customers that, no matter how authentic such emails may seem, any email supposedly from the airline that has a link to an Internet banking sign-on page, or a page requesting any personal or banking information, is not from SAA. In addition, customers are advised never to click on such a link as it will take them to a fraudulent website where their banking details, including a PIN or customer selected PIN may be compromised.”
He adds that SAA will never include a link that takes customers directly to a log-in page.
SAA did not comment on how the fraudsters got hold of the client’s information. The agent told eTNW the card had only ever been used for booking via the GDS and never the airline’s website.
