Expedia Group
Company Details
Linkedin ID:
expediagroup
Employees number:
21,768
Number of followers:
887,704
NAICS:
5112
Industry Type:
Homepage:
expediagroup.com
IP Addresses:
0
Company ID:
EXP_5026491
Scan Status:
In-progress
Expedia Group Company CyberSecurity Posture
expediagroup.com
At Expedia Group (NASDAQ: EXPE), we believe travel is a force for good – it opens minds, builds connections, and bridges divides. We create transformative tech that enables unforgettable experiences for all travelers, everywhere. Our trusted family of brands are known and loved by millions, and we power more trips than anyone else. To learn more about our vision of a more open world through travel, visit www.expediagroup.com. We’re committed to providing an inclusive and accessible recruiting experience for candidates with disabilities, or other physical or mental health conditions. If you require an accommodation or adjustment for any part of the application or recruitment process, please let us know by completing our Accommodation Request Form or contacting your recruiter. Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident about who they are. We do not send job offers via email, or any other messaging tools, to individuals we have not had prior contact with. Our email domain is @expediagroup.com. Our official careers website, where you can to find and apply for job openings, is careers.expediagroup.com/jobs. If you require customer service support to cancel, change or ask about a refund for your trip, you can connect with our 24/7 Virtual Agent through the following links: Expedia: https://www.expedia.com/helpcenter Hotels.com: https://service.hotels.com/en-us/ Vrbo: https://help.vrbo.com/ For additional assistance, direct message us on Twitter @ExpediaHelp with your itinerary number and email address: https://twitter.com/ExpediaHelp
Expedia Group A.I CyberSecurity Scoring
Expedia Group Risk Score (AI oriented)Between 750 and 799
Expedia Group
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Expedia Group Global Score (TPRM)XXXX
Expedia Group
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Expedia Group Company CyberSecurity News & History
Past Incidents
3
Attack Types
1
trivago
Breach
Rankiteo Explanation
Attack threatening the organization's existence
Description: Nearly 300,000 Israelis' personal information was made public by an Iranian hacker organization targeting websites for Israeli travelers. The compromised information includes ID numbers, addresses, credit card details, and more from Israeli travel sites. The security of more than 20 travel-related websites was hacked, including hotel4u.co.il, hotels.co.il, isrotel.com, minihotel.co.il, trivago.co.il, and danhotels.com. They sent the data breach letters to all affected and asked them to be alerted.
Expedia Group, Inc.
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: On March 2, 2022, Expedia Group, Inc. disclosed a data breach that occurred on **March 24, 2021**, impacting **three individuals** whose **credit card information** was potentially compromised. The incident was categorized under the type '**Other**' in the breach classification. While the scale of the breach was limited—affecting only a small number of customers—Expedia responded by offering **12 months of identity theft protection services** through its **Expedia IdentityWorks** program to mitigate potential risks. The breach did not involve large-scale data exfiltration, systemic financial fraud, or broader reputational damage beyond the immediate notification and remediation efforts. No evidence suggested the compromised data was used for fraudulent activities, and the company’s operational continuity remained unaffected. The incident primarily highlighted vulnerabilities in payment data security, though the impact was confined to a minimal subset of users without escalating into wider systemic consequences.
Expedia Group
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: Orbitz, a subsidiary of online travel agency Expedia Inc EXPE.O, said hackers may have accessed personal information from about 880,000 payment cards. The breach had occurred between Jan. 1, 2016 and Dec. 22, 2017 for its partner platform and between Jan. 1, 2016, and June 22, 2016, for its consumer platform. Information such as names, phone numbers, email and billing addresses have been accessed. For U.S. customers, social security numbers were not involved in this incident, the company said. The company said it has addressed the breach after it was discovered in March this year. Credit card issuer American Express Co AXP.N said in a statement that the attack did not compromise its platforms. Expedia’s shares fell as much as 1.9 percent to $108.99.
Expedia Group Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Expedia Group
Incidents vs Software Development Industry Average (This Year)
No incidents recorded for Expedia Group in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Expedia Group in 2026.
Incident Types Expedia Group vs Software Development Industry Avg (This Year)
No incidents recorded for Expedia Group in 2026.
Incident History — Expedia Group (X = Date, Y = Severity)
Expedia Group cyber incidents detection timeline including parent company and subsidiaries
Expedia Group Company Subsidiaries
At Expedia Group (NASDAQ: EXPE), we believe travel is a force for good – it opens minds, builds connections, and bridges divides. We create transformative tech that enables unforgettable experiences for all travelers, everywhere. Our trusted family of brands are known and loved by millions, and we power more trips than anyone else. To learn more about our vision of a more open world through travel, visit www.expediagroup.com. We’re committed to providing an inclusive and accessible recruiting experience for candidates with disabilities, or other physical or mental health conditions. If you require an accommodation or adjustment for any part of the application or recruitment process, please let us know by completing our Accommodation Request Form or contacting your recruiter. Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident about who they are. We do not send job offers via email, or any other messaging tools, to individuals we have not had prior contact with. Our email domain is @expediagroup.com. Our official careers website, where you can to find and apply for job openings, is careers.expediagroup.com/jobs. If you require customer service support to cancel, change or ask about a refund for your trip, you can connect with our 24/7 Virtual Agent through the following links: Expedia: https://www.expedia.com/helpcenter Hotels.com: https://service.hotels.com/en-us/ Vrbo: https://help.vrbo.com/ For additional assistance, direct message us on Twitter @ExpediaHelp with your itinerary number and email address: https://twitter.com/ExpediaHelp
Loading...
Expedia Group Similar Companies
Nielsen
Nielsen shapes the world’s media and content as a global leader in audience insights, data and analytics. Through our understanding of people and their behaviors across all channels and platforms, we empower our clients with independent and actionable intelligence so they can connect and engage with
Alibaba.com
The first business of Alibaba Group, Alibaba.com (www.alibaba.com) is the leading platform for global wholesale trade serving millions of buyers and suppliers around the world. Through Alibaba.com, small businesses can sell their products to companies in other countries. Sellers on Alibaba.com are t
At Bolt, we're building a future where people don’t need to own personal cars to move around safely and conveniently. A future where people have the freedom to use transport on demand, choosing whatever vehicle's best for each occasion — be it a car, scooter, or e-bike. We're helping over 200 mill
The Bosch Group is a leading global supplier of technology and services. It employs roughly 417,900 associates worldwide (as of December 31, 2024). According to preliminary figures, the company generated sales of 90.5 billion euros in 2024. Its operations are divided into four business sectors: Mobi
Grab
Grab is Southeast Asia’s leading superapp, offering a suite of services consisting of deliveries, mobility, financial services, enterprise and others. Grabbers come from all over the world, and we are united by a common mission: to drive Southeast Asia forward by creating economic empowerment for ev
Daraz is the leading e-commerce marketplace across South Asia (excluding India). Our business covers four key areas – e-commerce, logistics, payment infrastructure and financial services – providing our sellers and customers with an end-to-end commerce solution. With access to over 500 million custo
Lazada
About Lazada Group Founded in 2012, Lazada Group is the leading eCommerce platform in Southeast Asia. We are accelerating progress in Indonesia, Malaysia, the Philippines, Singapore, Thailand and Vietnam through commerce and technology. With the largest logistics and payments networks in the regio
We're a global online visual communications platform on a mission to empower the world to design. Featuring a simple drag-and-drop user interface and a vast range of templates ranging from presentations, documents, websites, social media graphics, posters, apparel to videos, plus a huge library of f
IDEMIA Group unlocks simpler and safer ways to pay, connect, access, identify, travel and protect public places. With its long-standing expertise in biometrics and cryptography, IDEMIA develops technologies of excellence with an impactful, ethical, and socially responsible approach. Every day, IDEMI
.png)
Expedia Group CyberSecurity News
December 22, 2025 03:57 PM
A comprehensive list of 2025 tech layoffs
A complete list of all the known layoffs in tech, from Big Tech to startups, broken down by month throughout 2024 and 2025.
December 20, 2025 01:49 AM
Seattle Inno - Expedia layoffs I Oleria launches out of stealth
Rick: Writing about Expedia's layoffs, which you can read about below, I was reminded of the company's 40-acre Interbay campus.
December 17, 2025 08:00 AM
From cybersecurity to AI to Apple: December in the C-suite
December capped off an exciting 2025 in the C-suite with some final shuffling before the New Year. HackerOne gets some help on the marketing...
December 16, 2025 08:00 AM
42 CxOs On the Move
This edition of CxOs on the Move highlights 42 technology leaders stepping into new CIO, CTO, and CISO roles across industries.
December 10, 2025 08:00 AM
Expedia Group Announces Agreement to Acquire Tiqets to Expand Global Activities and Experiences
Acquisition Enhances Expedia Group's Ability to Deliver Richer, Full-Trip Experiences for Travelers Worldwide through its B2B Platform and...
December 03, 2025 08:00 AM
Will Naming Its First Chief AI Officer Rewire Expedia Group’s (EXPE) Technology-Led Travel Narrative?
In early December 2025, Expedia Group Inc. appointed Xavier Amatriain, a former Google AI vice president and experienced data science leader...
November 13, 2025 08:00 AM
Expedia Group (EXPE): Assessing Valuation After Strong Earnings, Upgraded Revenue Outlook, and New Dividend
Expedia Group (EXPE) just posted third quarter earnings, showing both sales and net income climbing compared to last year.
November 10, 2025 08:00 AM
Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware
Cybersecurity researchers have called attention to a massive phishing campaign targeting the hospitality industry that lures hotel managers...
November 07, 2025 08:00 AM
Expedia Group AI agents handle more than half of queries, CFO says
The travel company sees AI as a way to improve its customer experience from the initial search through their entire stay.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Expedia Group CyberSecurity History Information
Official Website of Expedia Group
The official website of Expedia Group is https://careers.expediagroup.com/.
Expedia Group’s AI-Generated Cybersecurity Score
According to Rankiteo, Expedia Group’s AI-generated cybersecurity score is 796, reflecting their Fair security posture.
How many security badges does Expedia Group’ have ?
According to Rankiteo, Expedia Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Expedia Group have SOC 2 Type 1 certification ?
According to Rankiteo, Expedia Group is not certified under SOC 2 Type 1.
Does Expedia Group have SOC 2 Type 2 certification ?
According to Rankiteo, Expedia Group does not hold a SOC 2 Type 2 certification.
Does Expedia Group comply with GDPR ?
According to Rankiteo, Expedia Group is not listed as GDPR compliant.
Does Expedia Group have PCI DSS certification ?
According to Rankiteo, Expedia Group does not currently maintain PCI DSS compliance.
Does Expedia Group comply with HIPAA ?
According to Rankiteo, Expedia Group is not compliant with HIPAA regulations.
Does Expedia Group have ISO 27001 certification ?
According to Rankiteo,Expedia Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Expedia Group
Expedia Group operates primarily in the Software Development industry.
Number of Employees at Expedia Group
Expedia Group employs approximately 21,768 people worldwide.
Subsidiaries Owned by Expedia Group
Expedia Group presently has no subsidiaries across any sectors.
Expedia Group’s LinkedIn Followers
Expedia Group’s official LinkedIn profile has approximately 887,704 followers.
NAICS Classification of Expedia Group
Expedia Group is classified under the NAICS code 5112, which corresponds to Software Publishers.
Expedia Group’s Presence on Crunchbase
No, Expedia Group does not have a profile on Crunchbase.
Expedia Group’s Presence on LinkedIn
Yes, Expedia Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/expediagroup.
Cybersecurity Incidents Involving Expedia Group
As of January 01, 2026, Rankiteo reports that Expedia Group has experienced 3 cybersecurity incidents.
Number of Peer and Competitor Companies
Expedia Group has an estimated 27,919 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Expedia Group ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Expedia Group detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with sent data breach letters to all affected and asked them to be alerted., and remediation measures with offered 12 months of identity theft protection via expedia identityworks..
Incident Details
Can you provide details on each incident ?
Title: Orbitz Data Breach
Description: Hackers may have accessed personal information from about 880,000 payment cards.
Date Detected: March 2018
Type: Data Breach
Title: Data Breach of Israeli Travel Websites
Description: Nearly 300,000 Israelis' personal information was made public by an Iranian hacker organization targeting websites for Israeli travelers.
Type: Data Breach
Attack Vector: Website Hacking
Threat Actor: Iranian Hacker Organization
Title: Expedia Group Data Breach (2021)
Description: The Maine Office of the Attorney General reported that Expedia Group, Inc. announced a data breach potentially affecting the credit card information of 3 individuals. Identity theft protection services were offered for 12 months through Expedia IdentityWorks.
Date Detected: 2022-03-02
Date Publicly Disclosed: 2022-03-02
Type: Other
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach EXP16239622
Data Compromised: Names, Phone numbers, Email addresses, Billing addresses
Payment Information Risk: ['payment card information']
Incident : Data Breach TRI946171122
Data Compromised: Id numbers, Addresses, Credit card details
Systems Affected: hotel4u.co.ilhotels.co.ilisrotel.comminihotel.co.iltrivago.co.ildanhotels.com
Incident : Other EXP1014091725
Data Compromised: Credit card information
Identity Theft Risk: Yes (protection services offered)
Payment Information Risk: Yes
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Phone Numbers, Email Addresses, Billing Addresses, Payment Card Information, , Id Numbers, Addresses, Credit Card Details, , Credit Card Information and .
Which entities were affected by each incident ?
Incident : Data Breach EXP16239622
Entity Name: Orbitz
Entity Type: Subsidiary
Industry: Online Travel Agency
Customers Affected: 880000
Incident : Data Breach TRI946171122
Entity Type: Travel Websites
Industry: Travel
Location: Israel
Customers Affected: 300000
Incident : Other EXP1014091725
Entity Name: Expedia Group, Inc.
Entity Type: Corporation
Industry: Travel & Hospitality
Location: Seattle, Washington, USA
Customers Affected: 3
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach TRI946171122
Communication Strategy: Sent data breach letters to all affected and asked them to be alerted.
Incident : Other EXP1014091725
Remediation Measures: Offered 12 months of identity theft protection via Expedia IdentityWorks
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach EXP16239622
Type of Data Compromised: Names, Phone numbers, Email addresses, Billing addresses, Payment card information
Number of Records Exposed: 880000
Personally Identifiable Information: namesphone numbersemail addressesbilling addresses
Incident : Data Breach TRI946171122
Type of Data Compromised: Id numbers, Addresses, Credit card details
Number of Records Exposed: 300000
Personally Identifiable Information: ID numbersaddresses
Incident : Other EXP1014091725
Type of Data Compromised: Credit card information
Number of Records Exposed: 3
Sensitivity of Data: High
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Offered 12 months of identity theft protection via Expedia IdentityWorks, .
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Other EXP1014091725
Regulatory Notifications: Maine Office of the Attorney General
References
Where can I find more information about each incident ?
Incident : Data Breach EXP16239622
Source: Orbitz Disclosure
Incident : Other EXP1014091725
Source: Maine Office of the Attorney General
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Orbitz Disclosure, and Source: Maine Office of the Attorney General.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Sent data breach letters to all affected and asked them to be alerted..
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Other EXP1014091725
Customer Advisories: Offered 12 months of identity theft protection via Expedia IdentityWorks
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Offered 12 Months Of Identity Theft Protection Via Expedia Identityworks and .
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Iranian Hacker Organization.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on March 2018.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-03-02.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were names, phone numbers, email addresses, billing addresses, , ID numbers, addresses, credit card details, , credit card information and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was hotel4u.co.ilhotels.co.ilisrotel.comminihotel.co.iltrivago.co.ildanhotels.com.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were credit card details, credit card information, phone numbers, ID numbers, addresses, email addresses, billing addresses and names.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 1.2K.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Orbitz Disclosure and Maine Office of the Attorney General.
Stakeholder and Customer Advisories
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued was an Offered 12 months of identity theft protection via Expedia IdentityWorks.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in MadrasThemes MAS Videos allows PHP Local File Inclusion.This issue affects MAS Videos: from n/a through 1.3.2.
Risk Information
cvss3
Base: 7.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Description
Cross-Site Request Forgery (CSRF) vulnerability in Hoernerfranz WP-CalDav2ICS allows Stored XSS.This issue affects WP-CalDav2ICS: from n/a through 1.3.4.
Risk Information
cvss3
Base: 7.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Description
Ksenia Security Lares 4.0 Home Automation version 1.6 contains a critical security flaw that exposes the alarm system PIN in the 'basisInfo' XML file after authentication. Attackers can retrieve the PIN from the server response to bypass security measures and disable the alarm system without additional authentication.
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Ksenia Security Lares 4.0 Home Automation version 1.6 contains an unprotected endpoint vulnerability that allows authenticated attackers to upload MPFS File System binary images. Attackers can exploit this vulnerability to overwrite flash program memory and potentially execute arbitrary code on the home automation system's web server.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Ksenia Security Lares 4.0 version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' script that allows attackers to manipulate the 'redirectPage' GET parameter. Attackers can craft malicious links that redirect authenticated users to arbitrary websites when clicking on a specially constructed link hosted on a trusted domain.
Risk Information
cvss3
Base: 8.0
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=expediagroup' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
