Booking.com security issues...

Written By Tamie Matthews

As some of you may know, Booking.com has been experiencing significant issues with hackers accessing its extranet.

A number of hacks have occurred that you need to be aware of:

1. The hackers access your extranet account and message your customers to pay by crypto or to update their credit card details via a link. They will leave behind template messages to send to your customers over the coming days and weeks asking any new bookers to pay by the same links.

2. The hackers send emails to you stating that your account needs verification and to click a link.

3. The hackers pretend to be a customer and contact you to state that they wish to discuss adding extras to their booking such as wine, special access etc. They will include a link for you to click to respond. Or they will ask you to move outside the extranet and communicate on WhatsApp.

4. The hackers book rooms at your hotel and no show in the hope that you won't mark the reservation as invalid in the extranet. This allows the hackers to add points to their accounts and get future free stays.

These are only some of the hacks we are aware of today. There are many more and there will be many more to come. These issues have been rampant in Europe over the 2023 summer season and are now moving down under for our summer season. The hackers have identified accommodation as an easy target and play on our desire as hospitality professionals to provide personalised service.

To protect yourself, please note the following:

1. Do NOT click any link that may look like it comes from Booking.com. Take a moment to read the email then go to the normal extranet login and check your account as you would on any given day. Check you have the official extranet link for Booking.com saved to your favourites: https://account.booking.com/

2. Check your extranet account regularly to ensure the templates you have in use are yours and remove any left behind by hackers.

3. Communicate with your customers that they must protect their own safety. They can email or phone you via your website. You can add a line to your confirmation advising customers to remain vigilant and explain how you take payment for future stays plus how you don't take payment for bookings. Include your contact details and encourage people to call you if they aren't sure.

4. Change your passwords frequently. Do not use your address, town, location, or 1234. Free password generators can be found on Google if you want to get creative.

5. Review the two factor verification phone numbers you have attached to your Booking.com account and remove any that are no longer valid.

6. Speak to your IT support team and update your software security.

7. Ensure you have two factor verification on all email addresses you have in use. Delete any old email addresses and change passwords often.

8. Educate your team on cyber security.

If you are hacked, report it immediately to Booking.com via this link: https://partner.booking.com/en-us/help/legal-security/security/report-security-issue

If you have any questions, please don't hesitate to email or call us.

Tamie Matthews https://revenyou.com.au
Previous

SEO in 2024 - Preparing Your Business for the Future of Search Engine Optimisation
Next

Blogs – Are they Necessary?