Booking.com is notifying customers that unauthorized third parties may have accessed reservation data including names, contact details, booking dates, and hotel messages. Financial data was reportedly not exposed. The company detected suspicious activity, contained the issue, and reset booking PINs, but has not disclosed how many customers are affected or how the breach occurred. The exposed data poses a significant phishing risk, as Booking.com's messaging system has previously been exploited for payment scams. This follows a 2021 incident where Dutch regulators fined the company €475,000 after a breach exposed data of over 4,000 customers via compromised hotel staff logins.
Sort: