Booking.com breach gives scammers what they need to target guests

Booking.com notified customers that guest reservation data (names, emails, addresses, phone numbers and booking details) was accessed after criminals compromised hotel partners via ClickFix phishing that tricked employees into installing malware; Microsoft attributes the campaign to Storm-1865, which deployed malware such as XWorm and VenomRAT across multiple regions. The report highlights how stolen booking data is abused for impersonation and payment-fraud, places the incident in a broader pattern of travel-industry third-party breaches, and advises users to verify payment requests and monitor accounts.