Online travel giant Booking.com has disclosed a data breach in which unauthorised third parties may have accessed personal information linked to customers' past or upcoming reservations. In emails sent to affected users on 15 April, the company said the compromised data could include booking details, names, email addresses, phone numbers, and information shared with accommodations — though financial data was not accessed. Booking.com has issued new PINs to customers with active reservations and is urging users to guard against phishing attempts, warning it will never request credit card details via text, WhatsApp, or similar channels.