Booking.com: Booking.com data breach: Major warning issued to Aussie customers

Booking.com Warns Australian Customers After Data Breach Exposes Personal Information

Booking.com has alerted Australian customers following a data breach that may have exposed personal details to unauthorized third parties. The Dutch-based travel giant, which operates in over 160 countries with 28 million listings, detected suspicious activity on multiple reservations and launched an investigation.

The breach potentially compromised names, email addresses, phone numbers, and other details shared with accommodation providers. While the full extent of the impact remains unclear, Booking.com has issued new reservation and PIN numbers to affected users, cautioning them about phishing attempts from malicious actors posing as the company or property hosts.

The company stated that security remains a top priority and that it is reinforcing existing safeguards. However, it has not confirmed whether credit card or banking information was accessed. This incident adds to Booking.com’s history of cybersecurity challenges, including previous phishing attacks targeting hotel staff and travelers, with phishing scams surging by 900% in 2024.

Last year, over 65,600 Australians lost $31 million to phishing scams, underscoring the growing threat of such attacks in the travel sector.

Source: https://www.news.com.au/travel/travel-updates/warnings/aussie-customers-caught-up-in-bookingcom-data-breach-as-personal-information-compromised/news-story/26b1495dbf71155e1487353e69752ced

Booking.com cybersecurity rating report: https://www.rankiteo.com/company/booking.com

"id": "BOO1776085137",
"linkid": "booking.com",
"type": "Breach",
"date": "1/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Australian customers (exact '
                                              'number not specified)',
                        'industry': 'Travel and Hospitality',
                        'location': 'Australia (customers affected), Global '
                                    '(operations)',
                        'name': 'Booking.com',
                        'size': 'Large (28 million listings, operates in 160+ '
                                'countries)',
                        'type': 'Corporation'}],
 'attack_vector': 'Phishing/Suspicious Activity',
 'customer_advisories': 'Warning about phishing attempts from malicious actors '
                        'posing as Booking.com or property hosts.',
 'data_breach': {'personally_identifiable_information': 'Names, email '
                                                        'addresses, phone '
                                                        'numbers',
                 'sensitivity_of_data': 'High (PII exposed)',
                 'type_of_data_compromised': 'Personal Information'},
 'description': 'Booking.com has alerted Australian customers following a data '
                'breach that may have exposed personal details to unauthorized '
                'third parties. The breach potentially compromised names, '
                'email addresses, phone numbers, and other details shared with '
                'accommodation providers. The company has issued new '
                'reservation and PIN numbers to affected users and cautioned '
                'them about phishing attempts.',
 'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
                                       'history of cybersecurity challenges',
            'data_compromised': 'Names, email addresses, phone numbers, and '
                                'other personal details',
            'identity_theft_risk': 'High (personal information exposed)',
            'operational_impact': 'Issuance of new reservation and PIN numbers '
                                  'to affected users',
            'payment_information_risk': 'Unconfirmed (credit card or banking '
                                        'information may have been accessed)',
            'systems_affected': 'Reservation systems'},
 'investigation_status': 'Ongoing',
 'lessons_learned': 'Phishing scams remain a significant threat in the travel '
                    'sector, with a 900% surge in 2024. Reinforcing safeguards '
                    'and customer awareness is critical.',
 'motivation': 'Financial Gain (Phishing Scams)',
 'post_incident_analysis': {'corrective_actions': 'Reinforcing existing '
                                                  'safeguards, issuing new '
                                                  'reservation and PIN numbers',
                            'root_causes': 'Suspicious activity on multiple '
                                           'reservations, likely due to '
                                           'phishing or unauthorized access'},
 'recommendations': 'Enhance phishing detection and prevention measures, '
                    'improve customer communication about phishing risks, and '
                    'consider additional security layers for reservation '
                    'systems.',
 'references': [{'source': 'Booking.com Customer Advisory'}],
 'response': {'communication_strategy': 'Customer advisories warning about '
                                        'phishing attempts',
              'containment_measures': 'Issued new reservation and PIN numbers '
                                      'to affected users',
              'incident_response_plan_activated': 'Yes (investigation '
                                                  'launched)',
              'remediation_measures': 'Reinforcing existing safeguards'},
 'title': "Booking.com Data Breach Exposes Australian Customers' Personal "
          'Information',
 'type': 'Data Breach'}