Booking.com has confirmed that unauthorized access to customer data was discovered by cybercriminals, according to multiple German media reports. The breach involves fraudulent payment requests being sent to users through the platform, with attackers impersonating the travel booking service to trick individuals into revealing sensitive financial information.
The scheme, detailed by Spiegel and heise online, operates by sending fake invoices or payment demands that appear to originate from Booking.com. These messages often reference recent reservations and urge recipients to act quickly, exploiting urgency to bypass skepticism. SWR3 reported that the phishing attempts are currently active and specifically target users who have recently made bookings.
SZ.de noted that the company has advised customers to remain vigilant, emphasizing that Booking.com will never request payment via email links or ask for full credit card details outside its secure portal. RTL.de added that users should verify any payment request directly through their Booking.com account or the official app, rather than clicking links in unsolicited messages.
Whereas the exact number of affected users and the scope of data exposed have not been disclosed by the company, the incident highlights ongoing vulnerabilities in digital travel platforms amid rising cybercrime targeting consumer trust. Booking.com has not released a public statement detailing the technical nature of the breach or whether internal systems were compromised, but it urged users to report suspicious communications immediately.
The incident underscores the persistent threat of social engineering attacks in the online travel sector, where trusted brands are frequently mimicked to exploit user confidence. As travel bookings rebound globally, platforms like Booking.com remain high-value targets for fraudsters seeking to monetize stolen credentials or payment data.
