Polaris Holdings Co.,Ltd. [3010.T]
TOKYO, May 28 (Pulse News Wire) – Polaris Holdings CO.,LTD. (3010.T) confirmed that a cyber attack on its Booking.com group account led to unauthorized alterations of revenue collection accounts and fraudulent transfers at multiple hotels operated by the company.
The incident was detected on May 23, 2026, resulting in approximately May 28, 2026's worth of losses at one hotel due to funds being redirected to incorrect accounts. Early intervention prevented further unauthorized transactions at other affected properties. In addition to the financial irregularities, the company also identified phishing message incidents targeting guests at some of its hotels during the same timeframe. These events suggest potential misuse of customer data obtained through the compromised Booking.com management interface.
An ongoing investigation is examining whether there was any leakage of guest information via external reservation systems. Immediate actions taken by Polaris Holdings include changing passwords across all hotel Booking.com and related system accounts, requesting and reviewing access logs from Booking.com, and continuously monitoring to prevent further damage. The company is collaborating with relevant authorities and Booking.com's operators to address future security measures. While the impact on the company’s performance is expected to be minor, Polaris Holdings stated it would promptly disclose any additional significant developments.
The firm deeply regrets causing inconvenience and concern to customers and stakeholders.
🟢 Confidence: High AI-translated content.