Dear partner,As you may already be

Dear partner,

As you may already be aware, phishing attacks can have a serious impact on our business and customers if they aren’t detected and shut down quickly.

What is phishing?

Phishing attacks can take various forms. In most cases, phishers send out emails pretending to be from Booking.com. They might ask you to verify your Booking.com Extranet login details via a fake version of our website or ask you to pay your monthly commission invoice to a different bank account than usual. Some phishers might even contact you over the phone to request sensitive information such as reservation details (e.g. payment information, email addresses) or information about your property (e.g. login name, contact details). Just so you are aware, Booking.com will never do any of these things. If you receive an email like this or are asked for this type of information, you should never comply.

Simple steps to protect your property and our customers:

Always look for the green padlock and the text "Booking.com B.V" in the URL bar to ensure a secure connection. If an email directs you to a website that looks like Booking.com, never enter your login details if this padlock and text are not visible in the web address bar. We also advise you to save your Extranet login page as a bookmark in your Internet browser. This ensures you are always visiting the genuine Booking.com Extranet.

Do not open emails from people that you do not know. We will never communicate to you with an email address that does not end in @booking.com or @mail.partners.booking.com. If a message has come from an email address ending in @booking.com but the contents are suspicious, do not follow the instructions in the message and please report it to us immediately.

If you receive a suspicious email, please forward it as an attachment to report@booking.com along with your property ID and we will conduct an investigation. If in doubt, contact us via the phone numbers and email addresses provided in your Extranet. This is the only secure environment for you to retrieve payment and contact information for Booking.com. Remember, phishing emails can also contain fake contact numbers.

Please share this information with your staff and encourage them to take the same precautions.

Thanks in advance for staying alert! If you receive any suspicious communication, even if you’re not sure, it’s better to be safe than sorry. Forward it directly to us at report@booking.com.

With kind regards,

The Booking.com Security & Fraud Operations Team