Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

Booking.com Says Hackers Accessed User Information

The online travel platform has not said how many customers’ booking information was exposed, but said the issue has been contained. 

Booking hacked

Booking.com has notified some customers that hackers may have accessed information associated with their travel reservations.

In notifications shared online by users, the Amsterdam-based online travel platform said an unauthorized third party may have accessed information such as names, email addresses, phone numbers, and details users shared with accommodations.

Contacted by SecurityWeek, Booking.com clarified that customer accounts have not been breached. 

The company said it detected some “suspicious activity involving unauthorized third parties being able to access some of our guests’ booking information”.

However, it has not provided any clarification on the incident, and it remains unclear whether its systems have been breached or whether the attackers gained access to the data through other means.

It’s also unclear how many users are affected by this cybersecurity incident. 

Advertisement. Scroll to continue reading.

“We took quick action and the issues has been fully contained,” a Booking.com spokesperson said via email. “We have updated the PIN number for these reservations and informed our customers accordingly.” 

“While no financial or payment information was accessed, we’re also reminding customers to remain vigilant to potential phishing attacks and reinforcing that Booking.com will never ask for credit card details by email, phone WhatsApp or text message, or ask them to make a bank transfer that is different from the payment details in their booking confirmation,” the spokesperson added.

Related: Sophisticated ClickFix Campaign Targeting Hospitality Sector

Related: Critical Vulnerabilities Allowed Booking.com Account Takeover

Related: Traveler Information Stolen in Eurail Data Breach

Written By

Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Register

This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

Register

People on the Move

F5 has appointed Cathy Peterman as Chief People Officer.

Sean Murphy has joined F5 as a Field Chief Information Security Officer - North America.

CodeHunter has appointed Stephen McCarney as Chief Strategy Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.