Booking.com data breach overview:Â
- Who: Security researchers at Akamai say bad actors are using a fake Booking.com payment page to steal consumers’ credit card information.Â
- Why: The fake Booking.com payment page is part of a multi-step information stealing campaign where bad actors are breaching the systems of hotels, booking sites, and travel agencies.Â
- Where: Consumers nationwide are at risk of falling victim to these hacking campaigns.Â
Hackers have been using a bogus Booking.com payment page to steal consumers’ credit card information, according to security researchers.
The fake Booking.com payment page is part of a multi-step campaign wherein bad actors are breaching systems of hotels, booking sites, and travel agencies and stealing their customers’ financial data, reports Bleeping Computer.Â
According to a security researcher at Akamai, consumers are being sent a link for an alleged card verification needed to keep a reservation that leads them to a fake Booking.com payment page.Â
To protect themselves, consumers are advised not to click on any unsolicited links — regardless of how legitimate they appear — and to be cautious of any messages that prompt them to take immediate action, reports Bleeping Computer.Â
Bad actors corresponding with consumers through Booking.com’s official messaging platform, say researchers
Messages sent to consumers from the bad actors appear so real in part because they are sent from the booking site’s own official message platform, according to researchers, who warn this gives a consumer no reason to question whether they are legitimate.Â
“After the infostealer is executed on the original target (the hotel), the attacker can access messaging with legitimate customers,” said Shiran Guez, information security senior manager at Akamai, as reported by Bleeping Computer.
Consumers are ultimately recommended to contact a business — in this case Booking.com — at an official email address or phone number to obtain clarification about any messages.Â
In other data breach news, a class action lawsuit was filed against Dollar Bank this month by a consumer arguing the bank failed to adequately protect sensitive data of its customers during a data breach from 2021 to 2023.Â
Dollar Bank is accused of failing to fulfill its promise to protect the data of its customers during the data breach, which allegedly may have affected more than 13,000 of its current and former customers.
Have you been sent a link to a fake Booking.com payment page? Let us know in the comments!Â
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
- Mr. Cooper class action claims mortgage provider’s negligence resulting in data breach
- Dollar Bank class action claims data breach affected 13K+ current, former customers
- Postmeds class action alleges data breach compromised customer personal, health info
- FTC to require more entities to report data breaches
21 thoughts onBooking.com hack redirects users to fake payment page
Add me
They got me for some money!
Add me
How can I do the class action booking .com scam me out some money I couldn’t get in touch with no one
Add me
Add me please
Add me
Recently I used Booking.com to book my trip to EGYPT. Its a hassle because when I needed to change flights I could not do it with the airline directly because I used them instead. It would have been only 65$ to change flights with the airline. Bookings.com wanted an additional 100$ and charged the cost of a new ticket. I hope they get sued because I was put in a really bad economical situation with them.
Add Me
Add me
I utilize booking.com for most of my hotel stays and rentals.