ADVERTISEMENT

Hackers siphon data from 5M hotel guests, feeding it live onto Telegram

Cybernews research has uncovered a massive operation that was siphoning booking data from Spanish and Austrian hospitality platforms. Millions of hotel goers may have been exposed.

chekin gastrodat leak
Paulina Okunytė
Paulina Okunytė Senior Journalist
Apr 15, 2026 Updated: 15 April 2026 4 min read
server main page redacted
Server’s main page. Screenshot by Cybernews

What details did the Chekin and Gastrodat data leak expose?

  • Stay dates
  • Reservation IDs
  • Guest names
  • Property addresses
  • Internal safety flags used by accommodation platforms
  • Full names
  • Phone numbers
  • Email addresses
  • Dates and places of birth
  • In some cases, ID document details
gastrodat guests redacted
Guest list file example. Screenshot by Cybernews

Whose accounts were compromised?

compromised accounts redacted
List of compromised accounts that were used for data gathering. Screenshot by Cybernews

Threat actors were harvesting data automatically

dump log redacted
Logs of data exfiltration. Screenshot by Cybernews
ADVERTISEMENT
script example redacted
One of the python scripts used for data extraction. Screenshot by Cybernews

Heightened risk of social engineering attacks

Check if your data has been leaked

Find out if your email, phone number or related personal information might have fallen into the wrong hands.
18,611,353,922
Breached accounts
36,030
Breached websites
chekin bookings redacted
Booking list file example. Screenshot by Cybernews

The hospitality sector is a target

Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.

ADVERTISEMENT