Protecting your data is one of our top priorities. We have identified a phishing campaign via WhatsApp messages and email, using our name and visual identity.
One of our partners was the target of a cyberattack that resulted in the unauthorized access by the attacker to certain booking data, over a period extending from March 23 to March 30.
Fraudsters may ask for a card imprint, a temporary payment authorisation (stating that no amount will be charged), mention an additional payment, a “booking to be confirmed,” or an urgent action.
Do not reply, do not click on any link, and do not make any payment.
We will never ask you for your passwords, security codes, or banking details by email, SMS, or WhatsApp.
⚠ Fraudulent email addresses or senders:
- ask@wantyourfeedback.com
- voyageprivesupport@inbox.eu
- Divine Harvest
- Emma Larsen
- Korean Skin Care
- mCaffeine
- Sifia Baker
We also confirm that no banking data is affected and that your booking is confirmed.
What data is affected?
- For the booking holder: last name, first name, country of residence, email address, phone number and, in some cases, passport number and expiry date.
- For other travellers: last name, first name, country of residence and, in some cases, passport number and expiry date.
No banking data is affected.
What actions have been taken?
We immediately took all necessary measures to secure your data.
We have immediately taken all necessary measures to secure your data:
- Immediate blocking of the attacker’s access
- Revocation of our partners’ access to our booking API and implementation of a systematic password reset procedure
- Modification and strengthening of rate limiting rules
- Strengthening of security alerts
- Strengthening of request blocking measures based on fingerprinting
We have also notified the Commission Nationale de l'Informatique et des Libertés (CNIL) on April 2, 2026.
How can I verify the information related to my booking?
View and manage your booking only through our official channels: all information related to your trip is available in your customer account.
If in doubt, refrain from clicking on any links received.
I made a payment following this fraudulent message: what should I do?
Contact your bank immediately to report the transaction, cancel the payment method used and put appropriate security measures in place. You can also report the message as spam in your inbox.