ServizioContenuto basato su fatti, osservati e verificati dal reporter in modo diretto o riportati da fonti verificate e attendibili.Scopri di più
Cybersecurity

Data breach at Booking.com: hackers steal sensitive customer information and trigger countermeasures

Hackers have compromised personal data and booking details on Booking.com, exposing users to the risks of phishing and scams, while the company updates its security measures.

2' min read

Translated by AI

For feedback, please contact
english@ilsole24ore.com

Versione italiana

Key points

2' min read

Translated by AI

For feedback, please contact
english@ilsole24ore.com

Versione italiana

The popular travel site Booking.com suffered a data breach in which hackers stole customer information, including booking details. This was revealed by PcMag.

On Sunday 12 April 2026, some users reported receiving emails from Booking.com warning them that 'unauthorised third parties may have accessed some booking information associated with your reservation'.

Loading...

The email suggests that hackers have already exploited customer data.

"We recently noticed suspicious activity involving several bookings, and took immediate action to contain the problem," the site wrote.

"Based on the results of our investigations to date, the information accessed could include:
1) booking details; 2) names; 3) emails; 4) addresses; 5) phone numbers associated with the booking; 6) any other information you may have shared with the accommodation."

Loading...

Countermeasures by Booking.com

Booking.com has now generated new customer reservation pins to prevent hackers from accessing them.

The company also clarified that no user addresses had been compromised, suggesting instead that accommodation addresses had been hacked.

Risks: possible phishing

However, the incident risks exposing affected customers to potential phishing scams.

A number of Reddit users have already reported receiving fraudulent messages on WhatsApp concerning their bookings.

However, it is unclear whether hackers had the opportunity to exploit the flaw some time ago.

The Australian Broadcasting Corporation reports that a Booking.com user received a phone call in December from someone claiming to be a Booking.com agent, but who was actually a imposter intent on stealing his credit card details.

When asked about this, Booking.com simply stated: 'We are committed to the security and protection of our customers' data. We recently noticed some suspicious activity involving unauthorised third parties gaining access to some of our customers' booking information. After discovering the activity, we took steps to contain the problem. We updated the pin code for these bookings and informed our customers.

The company did not specify how many users were affected or who might be responsible for the breach.

In the meantime, some customers claim to have received several emails about the breach, which prompted them to contact Booking.com on social media to ask if the emails were legitimate.

Copyright reserved ©
Loading...

Brand connect

Loading...

I prossimi eventi

Tutti gli eventi

Newsletter

Notizie e approfondimenti sugli avvenimenti politici, economici e finanziari.

Iscriviti