Booking.com Confirms Data Breach Exposing Guest Booking Information
Booking.com has acknowledged a data breach in which unauthorized third parties accessed guest booking information. While financial details and physical addresses were not compromised, the exposed data could be exploited for phishing attacks.
Affected guests have reported receiving suspicious emails following the incident, prompting Booking.com to reset PIN numbers for impacted reservations. The company confirmed that no payment information was accessed from its systems and reiterated that it would never request credit card details via email, phone, WhatsApp, or text.
The breach aligns with a broader trend of cyber threats targeting the travel industry. In late 2024, Microsoft warned of a phishing campaign impersonating Booking.com, which persisted into early 2025. The campaign specifically targeted hospitality businesses in the UK, underscoring the ongoing risks of social engineering attacks in the sector.
Source: https://www.thecaterer.com/news/phishing-attack-warning-issued-following-bookingcom-data-breach
Booking.com cybersecurity rating report: https://www.rankiteo.com/company/booking.com
"id": "BOO1776680735",
"linkid": "booking.com",
"type": "Breach",
"date": "12/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Guests with impacted '
'reservations',
'industry': 'Travel/Hospitality',
'name': 'Booking.com',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'customer_advisories': 'Advisory to customers that Booking.com would never '
'request credit card details via email, phone, '
'WhatsApp, or text',
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'Non-financial, non-address personal '
'data',
'type_of_data_compromised': 'Guest booking information'},
'description': 'Booking.com has acknowledged a data breach in which '
'unauthorized third parties accessed guest booking '
'information. The exposed data could be exploited for phishing '
'attacks. Affected guests reported receiving suspicious emails '
'following the incident, prompting Booking.com to reset PIN '
'numbers for impacted reservations. The company confirmed that '
'no payment information was accessed from its systems.',
'impact': {'customer_complaints': 'Affected guests reported receiving '
'suspicious emails',
'data_compromised': 'Guest booking information',
'payment_information_risk': 'None (financial details and physical '
'addresses were not compromised)'},
'motivation': 'Phishing Attacks',
'references': [{'source': 'Microsoft'}],
'response': {'communication_strategy': 'Advisory to customers that '
'Booking.com would never request '
'credit card details via email, phone, '
'WhatsApp, or text',
'incident_response_plan_activated': 'PIN numbers reset for '
'impacted reservations'},
'title': 'Booking.com Data Breach Exposing Guest Booking Information',
'type': 'Data Breach'}