In all honesty I think that Hilton IT's algorithms are probably not the most well-written and/or are in overkill mode. Opening one or more new accounts, buying points or earning points through CC signup bonuses etc with these new accounts and then transferring them to an existing account (using the same IP and having the same cookies on your PC) to try and bypass limits is most likely going to get both your accounts flagged. Accounts in mainland China and other places like Russia, the Ukraine and other parts of Eastern Europe with histories of hacking and internet fraud will be watched/monitored/checked more carefully and/or have different sets of algorithms applied to them. And finally, those accounts that were hacked some time ago when Hilton had a breach (last year I think it was) will most certainly be on a blacklist and some of them probably restricted in what they can and cannot do (hence some users here reporting their accounts being unable to send/receive points). And don't believe for one minute that Hilton would have told you that your account was hacked if it in fact was and you were lucky enough that the hacker, for whatever reason, did not change your account's password and your account was left untouched. We can assume that a lot of accounts were hacked and members just don't know about it even to this day.

Here's what I suggest. Have every active account holder in the pool, i.e; everyone who is going to either send and/or receive points, email and call Hilton and state their intentions to pool points. When each member is on the phone to them they will have their voice recorded so the fraud department will have different voiceprints to examine if there is any investigation*. Mention politely that this is a service which they have implemented and advertised and that all parties involved will be on the phone to their lawyers/small claims court/fair trade association or whatever is applicable for your location if things go wrong and points and accounts are arbitrarily deleted and closed. Furthermore, ask for a note to be put on each account saying that you (each member) has authorized the upcoming transfer of points and preferably set a date or timeframe in which you will complete the transfer(s) and adhere to that timeframe. Then, and only then, will you have something substantial to fall back on to back up your transfer and prove it is not fraudulent.

* Chances may be slim that they will go to that depth but it wouldn't hurt to ask them to do it anyway if push comes to shove


And on another note I have updated the wiki for clarity. Thank you milesmilesmiles for the contribution. ^