2022-11-23 Sonder Holdings Inc. Cybersecurity Incident

Page last updated on September 25, 2025

Sonder Holdings Inc. initially disclosed a cybersecurity incident in an SEC 8-K filing on 2022-11-23 08:04:19 EST.

Incident Details

Material: No
Is Breach: Yes
Records Compromised: Unknown
Data Types Impacted: Driver License Number, Other, Credit card number, Email, Home address, Date of Birth, Phone Number, Name, Password, Username

Compromised Date: Unknown
Detected Date: 2022-11-14
Disclosure Date: 2022-11-23
Contained Date: Unknown
Recovered Date: Unknown

Attack Goal: Unknown
Attack Tactics¹: TA0001, TA0010
Attack Techniques¹: OTHER

Costs: No Costs Tracked (yet)

Filings

8-K filed on 2022-11-23

Sonder Holdings Inc. filed an 8-K at 2022-11-23 08:04:19 EST
Accession Number: 0001819395-22-000161

Item 8.01 Other Events.

On November 23, 2022, Sonder Holdings Inc. (the "Company") announced that measures have been undertaken to respond to an information technology security incident resulting in the unauthorized access to one of the Company's systems that included certain guest records. The Company's business remains fully operational with no material disruption, and the investigation into this incident remains ongoing.

At this time the Company cannot determine the extent, if any, of incremental costs, injury to reputation or other material adverse impact that this event may have on the Company's business, operations, or financial results.

The Company's press release regarding this incident is attached as Exhibit 99.1, and incorporated herein in its entirety by reference.

Exhibit No. 99.1

Press Release dated November 23, 2022

Sonder Holdings Inc. Announces Security Incident with Guest Reservation Database

SAN FRANCISCO, November 23, 2022 - Sonder Holdings Inc. (NASDAQ: SOND; "Sonder" or the "Company") advises that measures have been undertaken to respond to an information technology security incident resulting in unauthorized access to one of the company's systems that included certain guest records. Sonder's business remains fully operational and the investigation into this incident remains ongoing.

On November 14, 2022, Sonder learned of unauthorized access to one of its systems that included certain guest records. Upon this discovery, the Company took swift action. The Company took steps to contain the event, including making sure that the unauthorized individual no longer had access to Sonder systems, verifying that operations were not affected, and investigating the scope and impact of the incident. The Company also engaged leading security and forensic specialists to assist in its investigation and response to the incident.

Sonder believes that guest records created prior to October 1, 2021 were involved in this incident. Some combination of the following guest information has been accessed:

• Sonder.com username and encrypted password
• Full name, phone number, date of birth, address, email address
• Certain guest transaction receipts, including the last 4 digits of credit card numbers and transaction amounts
• Dates booked for stays at a Sonder property

Additionally, Sonder believes that copies of government-issued identification such as driver's licenses or passports may have been accessed for a limited number of guest records.

Sonder has taken the following steps to help guests monitor and protect their information:

• Launched a dedicated page at blog.sonder.com for guests who have questions about this incident.
• Sonder will be notifying and making services available to guests whose information was involved in this incident, such as credit monitoring, identity protection, or WebWatcher services, which includes monitoring of internet sites where personal information may be shared and generates an alert to the guest if evidence of their personal information is found.
• Guests who believe their information may have been involved in this incident can email sonder@krollsupport.com or can call 1-855-504-2761 (U.S., Canada, Mexico) or +44 20 7570 0344 (Europe and all other regions) to access the provided services.

Sonder is committed to its guests and to resolving this incident quickly. Sonder is notifying the appropriate regulatory bodies and has contacted law enforcement.

Company Information