Booking.com has confirmed that it recently detected a cyberattack that led to unauthorised access to certain customer booking information. The company said suspicious activity involving third parties allowed limited access to reservation data linked to some users.
According to the platform, the breach affected details associated with past bookings. This includes names, email addresses, phone numbers, physical addresses and any additional information shared with accommodation providers during reservations.
The company has not disclosed the number of users impacted by the incident.
Financial data not compromised
Booking.com said that sensitive financial details were not accessed in the breach. The company clarified that payment-related information, including card details, remained secure.
In a communication sent to affected users, Booking.com stated that it has taken immediate steps to contain the issue. These include updating PIN codes linked to reservations and notifying impacted customers about the potential exposure of their data.
The company added that the investigation is ongoing and further updates will be shared if required.
Steps taken to secure user accounts
Following the incident, Booking.com said it has strengthened internal systems and implemented additional safeguards to prevent further unauthorised access. The company also advised users to remain cautious of suspicious messages or requests related to their bookings.
This development comes amid a rise in cybercrime attempts targeting travel platforms. Booking.com has previously warned users about scams where attackers impersonate hotels or service providers to collect payment details.
Previous incidents and industry concerns
The platform has faced similar security challenges in the past. In an earlier case, attackers used phishing techniques to access hotel systems and retrieve booking data of thousands of users.
The broader travel and hospitality industry continues to face scrutiny over data security, with regulators and users demanding stronger protections against breaches and fraudulent activities. Booking.com said it is working closely with relevant authorities and continues to monitor the situation.
Official Clarification from Booking.com
Booking.com has issued an official clarification on the cyberattack. "At Booking.com, we are dedicated to the security and data protection of our guests. We recently noticed some suspicious activity involving unauthorized third parties being able to access some of our guests’ booking information. Upon discovering the activity, we took action to contain the issue. We have updated the PIN number for these reservations and informed our guests.While email addresses, phone numbers and booking details may have been accessed, no physical addresses and financial information were accessed".
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
Find the best of Al News in one place, specially curated for you every weekend.
Stay on top of the latest tech trends and biggest startup news.
