Booking.com Confirms Unauthorized Access to Systems, Exposes User Data
AI-generated from multiple sources. Verify before acting on this reporting.
AMSTERDAM — Booking.com confirmed on Sunday that unauthorized third parties gained access to its systems, exposing sensitive reservation and user data and prompting a global reset of personal identification numbers.
The online travel agency disclosed the breach in a statement released late Sunday, acknowledging that the intrusion compromised information including names, email addresses, phone numbers, and details regarding specific bookings. The company stated that the incident is currently under investigation and that affected customers are being notified directly.
In response to the security incident, Booking.com has initiated a mandatory reset of PINs for users who have set them up for their accounts. The company advised travelers to review their account activity and change their passwords immediately. Booking.com stated that no financial data, such as credit card numbers, was accessed during the breach, though the full scope of the compromised information remains under review.
The breach represents a significant security challenge for the Amsterdam-based company, which operates in more than 220 countries and territories. The incident occurred while the company was processing millions of reservations globally. Security experts note that travel platforms are frequent targets for cyberattacks due to the volume of personal and financial data they hold.
Booking.com has engaged external cybersecurity experts to assist with the investigation and to strengthen its defenses against future attempts. The company is cooperating with relevant law enforcement agencies to determine the origin and extent of the unauthorized access. No specific group or individual has been identified as responsible for the intrusion at this time.
Travelers who have used the platform in recent months are urged to monitor their accounts for suspicious activity. Booking.com has established a dedicated support channel to address customer inquiries regarding the breach. The company emphasized its commitment to protecting user data and restoring trust following the incident.
The full impact of the breach on Booking.com's operations and reputation remains to be seen. As the investigation continues, the company faces scrutiny over its data protection measures and response to the security failure. Further details regarding the number of affected users and the specific methods used by the attackers are expected to emerge in the coming days.