
Travel booking platform, Booking.com, recently experienced a data breach, potentially exposing user data to unauthorized individuals. This discovery was made following the observation of suspicious activities related to several reservations. The compromised data might consist of booking details, user names, email addresses, phone numbers, and other information shared by customers during their booking process.
Despite the security breach, the Netherland-based company assured its users that their financial data and home addresses were not compromised. The company said, “We have dedicated teams and employ machine learning tools to monitor, detect, and block suspicious activity around the clock. We are continuously working to enhance the robust security measures we have in place.”
Booking.com, being one of the largest hotel reservation platforms globally, did not reveal more information about the extent of the breach, including the number of users affected.
There have been reports from some customers who claim to have received phishing messages through WhatsApp that contained their booking details and personal information. This suggests that the hackers could be using the stolen data to target Booking.com customers.
In response to this issue, Booking.com took immediate action to contain the situation and issued new PINs to users with reservations. They also cautioned their customers to stay alert to suspicious emails or phone calls pretending to be from the properties or the platform itself. The company emphasized that they would never ask for credit card details through an email, phone call, text message, or WhatsApp.
The recent breach is one of many cybercrime attempts targeting Booking.com, which has been dealing with an increase in scams on its platform. Fraudsters, posing as legitimate entities, have been known to ask for payment details under the guise of pre-authorization or trip verification, leading to sizeable unauthorized charges.
A similar incident happened in 2018 when attackers used phishing techniques to gain login credentials from hotel employees in the United Arab Emirates. This breach allowed them to access booking information of over 4,000 users on the platform.
Despite these security challenges, Booking.com has recorded a high number of bookings. Since 2010, it has facilitated reservations for about 6.8 billion customers, making it one of the leading players in the travel and hospitality industry.
What kind of customer information was potentially exposed in the data breach?
Email addresses, phone numbers, booking details, and any other information shared by the customers during the booking process might have been compromised.
What steps has Booking.com taken in response to the data breach?
Booking.com has issued new PINs to affected users and taken immediate action to contain the issue. They have also warned their customers to be wary of suspicious communication that could be impersonating the platform or associated properties.
Has Booking.com experienced cybersecurity issues in the past?
Yes, Booking.com has faced challenges with cybercrime in the past. For instance, in 2018, attackers used phishing techniques to access the booking information of more than 4,000 users on the platform.