Cybersecurity researchers have identified a widespread phishing campaign targeting travelers through compromised hotel accounts on Booking.com. The attackers gain access to hotel administrative accounts and then send fraudulent messages to customers, posing as the hotel to solicit additional payment or personal information. This activity has been ongoing since at least April 2025. The scheme involves impersonating legitimate Booking.com communications to direct users to fake payment pages, aiming to steal financial details. This security breach raises concerns about the safety of user data on the platform and the potential for financial losses for travelers who fall victim to the scam. There has been no immediate official statement from Booking Holdings regarding the extent of the issue or the measures being taken to mitigate it. At present, there is no available information or market analysis discussing the immediate impact of this news on Booking Holdings' (BKNG) stock price. The revelation of the security vulnerability is recent, and any potential market reaction is yet to be observed or reported by major financial news outlets.