Booking.com reports security breach exposing customer reservation data

Booking.com has confirmed a security breach involving unauthorized third-party access to customer reservation information. The company, headquartered in Amsterdam, stated that the attackers accessed details including names, email addresses, phone numbers, and reservation-specific information shared with accommodation providers. Booking.com maintains that no financial or payment data was compromised during the incident. In response, the platform has updated PIN codes for the affected bookings and is notifying impacted users via email. The company has not disclosed the total number of affected users or the specific geographical regions where the breach occurred. This incident, referred to as reservation hijacking, facilitates sophisticated phishing attacks where criminals impersonate accommodation providers to solicit fraudulent payments. Booking.com has initiated measures to mitigate the threat and is investigating the extent of the unauthorized access.