On 20 March 2023, the Business & Human Rights Resource Centre invited Booking.com to respond to concerns raised by journalists from Ars Technica, who pointed out that customers continue to be targeted for phishing attacks related to their Booking.com reservations. Phishing messages have contained names, addresses, phone numbers, confirmation numbers, booking dates and prices that accurately reflect the information provided to Booking.com to make real reservations. The company did not respond.