SiliconANGLE

OAuth vulnerabilities on Booking.com could have resulted in account takeovers

Security researchers at Salt Security Inc. today released new threat research that highlights critical security flaws found on the website of popular hotel booking service Booking Holdings Inc. The ...
HeraldNet

Booking.com suspended his account. How can he get it back?

Q: I write to express my disappointment and distress with my recent experiences at Booking.com. I travel frequently, as do my wife and family. I always recommend Booking.com, and we all use it almost ...
CSOonline

Booking.com account takeover flaw shows possible pitfalls in OAuth implementations

Booking.com, one of the world’s largest online travel agencies, recently patched a vulnerability in its implementation of the OAuth protocol that could have allowed attackers to gain access to ...
NOLA.com

Scammer uses my name on Booking.com, and my reservations are gone. Why can't the company help?

I write to express my disappointment and distress with my recent experiences at Booking.com. I travel frequently, as do my wife and family. I always recommend Booking.com, and we all use it almost ...
TechRadar

Booking.com customers targeted in major new phishing campaign

A compromised Booking.com hotel account was used in an elaborate phishing scheme aiming to empty customer bank accounts, a new report from cybersecurity experts Perception Point claims. As per the ...
Ars Technica

Booking.com says typos giving strangers access to private trip info is not a bug

What?! Why? They can't remove someone from a booking they want nothing to do with ? They don't know how to delete from a database? And the easy solution is just having the email link be a request for ...