BearX220

Passwords are actually obsolete and an ineffectual security solution. Most people use obvious ones or never change them. The big cyber security thinkers are nudging the world toward some kind of dual-factor authentication, mixing a biometric factor and a data factor, but it's hard to come up with a solution that's less user-onerous in practice than a login/password.

CAPTCHA roadblocks are crude and primitive and not a long-term answer, but until something user-friendly on the dual-factor front is figured out they help keep hacker bots at bay.

The mega-question here, of course, is why the Hilton and HHonors websites are such perpetual train wrecks. People have been noting serious bugs and failures and whatnot in this forum for literally 15 years, and they are never addressed. All they do is window-dressing -- slap a bigger (and functionally useless) image on the front page, etc.