We recently confirmed that some guests who made reservations at MIMARU Kyoto Kawaramachi Gojo were sent messages directing to a phishing site.
We do not use emails or chats on our reservation site to ask for guests’ credit card information or prompt payments.
Please be cautious not to inadvertently open any attachments or follow links from senders disguising themselves as booking.com.
We are investigating the details of any potential leaks of personal information. We have sent out alerts to customers that have received the messages mentioned above, and are changing the administrator passwords for booking.com at every MIMARU facility.
We apologize deeply for having caused our customers such inconvenience and worry.
1. Sequence of Events
At around 3:00 on 2024/6/20, it was confirmed that messaged with phishing links were being sent to customers using a system provided by Booking.com and managed by our company. With this in mind, we are contacting customers who are targets for the messages in question so they do not access the link in question.
2. Request to Customers
We ask that you please not access any links from suspicious senders.
Requests for information regarding this incident may be directed to the point of contact below.
Customer Support
Booking.com
Phone: (Japan domestic line) 03-6743-6650
International Number(English) +44 20 3320 2609
「MIMARU Kyoto Kawaramachi Gojo」
kawaramachi-gojo@chm.cigr.co.jp
3. Further Responses and Prevention Strategies
We are coordinating with the relevant organizations while progressing an investigation into the cause, and while implementing the necessary responses and countermeasures are striving for flawless preventative measures.
We once again deeply apologize for causing our customers great inconvenience and concern.
*“Phishing site” refers to a fake website that utilizes fraudulent methods to steal personal information, credit card numbers, etc., disguised as an actual website.
The accommodations reservation information management system (hereinafter, management system) provided by Booking.com and the one used at our official website, was accessed illegally, and a message was sent to MIMARU Kyoto Kawaramachi Gojo guests regarding their reservations and trying to direct them to a phishing site.
In addition, it is possible that guests’ personal information stored in the management systems was viewed by a third party.
We do not use emails or chats on our reservation site to ask for guests’ credit card information or prompt payments.
If you receive any suspicious e-mails from Booking.com please do not access any included links, files, or make any payments through said emails. Further, please contact Booking.com directly or the hotel if you do not recognize the content of any suspicious emails.
We are alerting guests who were sent the suspicious message and are improving cyber security at all MIMARU facilities.
We offer our sincerest apologies for the trouble and concern that this has caused our guests.
*“Phishing site” refers to a fake website that utilizes fraudulent methods to steal personal information, credit card numbers, etc., disguised as an actual website.
Cookies help us deliver services. By clicking "Accept," you consent to the use of cookies. Click here to learn more.