Warning: Change your assigned PIN
#17
Join Date: Nov 1999
Location: Los Angeles, CA, USA
Programs: AA PLT, SPG GLD, PC PLT SPIRE
Posts: 4,531
<font face="Verdana, Arial, Helvetica, sans-serif" size="2">Originally posted by NCRBILL:
He may have been one of our military travelers. That is one way to show Capt.</font>
He may have been one of our military travelers. That is one way to show Capt.</font>
#18
Join Date: Oct 2001
Location: Anywhere and Everywhere
Posts: 318
I wonder if this is related. I just logged on to check my HHonors account. I entered my HHonors # and PIN (I've never changed it from the assigned #) and a screen popped up saying, "Please enter last name for verification." I typed in "Doakes" and everything proceeded as always. This has never happened before.
#19
Join Date: Sep 2001
Location: Washington, DC
Posts: 62
<font face="Verdana, Arial, Helvetica, sans-serif" size="2">Originally posted by CutStyle:
Since you guys have obviously now changed your PIN numbers, what were the old numbers? Maybe a *huge* number of accounts went out with the same PINs?</font>
Since you guys have obviously now changed your PIN numbers, what were the old numbers? Maybe a *huge* number of accounts went out with the same PINs?</font>
seriously ... if a mass-PIN-number is truly out there, I for one don't want to be the one revealing what the magic word is. Nor should anyone ... not everyone with a lot of points in their accounts reads these boards, y'know.
Just my 5 points' worth ...
SP
#20
Join Date: Dec 2001
Location: New York City
Posts: 171
WOW!
The additional security step of providing ones last name has indeed been added!
Perhaps this is part of the software upgrades Hilton has been working on, or the work of a certain Hilton angel. Or both. Way To Go Hilton! In just over 24 hours since the original posting, Hilton has acted! Very Impressive!
The additional security step of providing ones last name has indeed been added!
Perhaps this is part of the software upgrades Hilton has been working on, or the work of a certain Hilton angel. Or both. Way To Go Hilton! In just over 24 hours since the original posting, Hilton has acted! Very Impressive!
#24
Join Date: Jan 2000
Location: fort worth, texas
Posts: 946
for the record, i noticed a long time ago that there is a relatively simple pattern to Hilton account PINs. let's just put it this way-- there is NO WAY they could be generated randomly, and you don't have to be John Nash Jr. to figure it out.
i don't think anyone should give any more specific details, but the only excuse i can think of is that if you go to a Hilton rep and forget your PIN, they can miraculously pull-up your account.
if anyone hacked into a Hilton account, the hotel should bear the brunt of the blame for their 4th-rate security.
i don't think anyone should give any more specific details, but the only excuse i can think of is that if you go to a Hilton rep and forget your PIN, they can miraculously pull-up your account.
if anyone hacked into a Hilton account, the hotel should bear the brunt of the blame for their 4th-rate security.
#25
A FlyerTalk Posting Legend
Join Date: Jan 2002
Posts: 44,856
<font face="Verdana, Arial, Helvetica, sans-serif" size="2">Originally posted by teammjs:
for the record, i noticed a long time ago that there is a relatively simple pattern to Hilton account PINs. let's just put it this way-- there is NO WAY they could be generated randomly, and you don't have to be John Nash Jr. to figure it out.
i don't think anyone should give any more specific details, but the only excuse i can think of is that if you go to a Hilton rep and forget your PIN, they can miraculously pull-up your account.
if anyone hacked into a Hilton account, the hotel should bear the brunt of the blame for their 4th-rate security.</font>
for the record, i noticed a long time ago that there is a relatively simple pattern to Hilton account PINs. let's just put it this way-- there is NO WAY they could be generated randomly, and you don't have to be John Nash Jr. to figure it out.
i don't think anyone should give any more specific details, but the only excuse i can think of is that if you go to a Hilton rep and forget your PIN, they can miraculously pull-up your account.
if anyone hacked into a Hilton account, the hotel should bear the brunt of the blame for their 4th-rate security.</font>
I thought that they would have been able to pull up the account without a PIN anyway
Dave
#26
Join Date: Mar 2002
Location: currently swimming for miles/points
Posts: 142
Dave,
You're right... they can look up your account number simply by searching for your name and address
I don't know what sort of logistics teammjs was using, but how can you "notice a pattern" of account numbers unless you have a string of them? and if so, what would someone do with all those HHonors account numbers? they're not like credit card numbers afterall... you usually have to "purchase" to earn points this post is getting more amusing everyday.
kudos to HHonors for stepping up on the security!
You're right... they can look up your account number simply by searching for your name and address
I don't know what sort of logistics teammjs was using, but how can you "notice a pattern" of account numbers unless you have a string of them? and if so, what would someone do with all those HHonors account numbers? they're not like credit card numbers afterall... you usually have to "purchase" to earn points this post is getting more amusing everyday.
kudos to HHonors for stepping up on the security!