Latest News About Booking.com Data Breach

Here’s the latest available on Booking.com data breach:

• Booking.com confirmed unauthorized access to personal data tied to reservations, including names, emails, addresses, phone numbers, and booking details. The company says payment card data was not accessed. Affected customers were notified and PINs on affected bookings were reset to contain the incident.[3][4][6]

• Reports indicate the breach began with suspicious activity around certain reservations and has fueled travel scams, including phishing and “reservation hijacking” attempts that leverage exposed booking context. Financial information (credit cards) reportedly remained unaffected, but the exposed data heightens risk of social engineering.[5][7][3]

• Coverage from multiple outlets notes the breach impacted a broad set of travelers, with warnings about follow-on scams and advice to watch for phishing attempts that reference real bookings. The scope and exact number of affected users vary by report.[7][9][3][5]

• Context from industry outlets emphasizes ongoing security measures: Booking.com has reset PINs for affected reservations and is advising vigilance against impersonation attempts that rely on reservation details. Some outlets discuss broader concerns about travel data security in light of this incident.[4][5][7]

• Public discussion and updates in mid-April 2026 highlighted that the hack exposed non-financial reservation data globally, prompting a rise in phishing and scam activity that uses legitimate booking contexts to deceive travelers.[1][10][3]

If you’d like, I can pull the most authoritative official statement from Booking.com and summarize actionable steps for you (e.g., checking your past bookings for anomalies, monitoring payment methods, and identifying phishing red flags). I can also set up a brief, personalized risk check based on your recent bookings.