Hospitality company Sonder Holdings says it was the subject of a security breach on November 14.
“Measures have been undertaken to respond to an information technology security incident resulting in unauthorized access to one of the company’s systems that included certain guest records,” the company says in a news release filed with the U.S. Securities and Exchange Commission.
“Sonder’s business remains fully operational and the investigation into this incident remains ongoing.”
Subscribe to our newsletter below
Sonder says it took steps to contain the event, including “making sure that the unauthorized individual no longer had access to Sonder systems, verifying that operations were not affected, and investigating the scope and impact of the incident.”
Some guests’ names, phone numbers, dates of birth, addresses, email addresses, user names, encrypted passwords, driver’s licenses or passports, the last four digits of credit card numbers and dates of stays may have been accessed, according to the company.
The company says it believes the breach affected accounts created prior to October 1, 2021 and security and forensic specialists are assisting in the investigation.
Sonder says it has taken steps to “help guests monitor and protect their information,” including:
- Creating a dedicated page for guests who have questions.
- Notifying and making services available to affected guests, such as credit monitoring, identity protection or WebWatcher services.
Launched in 2014 and headquartered in San Francisco, Sonder offers a variety of accommodation options in more than 30 cities in eight countries.
Sonder’s revenue for the third quarter of this year totaled $125 million, up 85% year-over-year.