Consolidated "Hilton Honors Account Hacked" thread
#378
Join Date: Aug 2013
Location: NYC
Programs: HH DFL, Hyatt Globalist, AA CK 3MM+, United 1K, National EE, Del Friscos Gold, Uber Diamond
Posts: 51
#379
FlyerTalk Evangelist
Join Date: Aug 2007
Location: SEA, but up and down the coast a lot
Programs: Oceanic Airlines Gold Elite
Posts: 20,397
#380
Join Date: Oct 2013
Programs: USAir Chairman, Hilton Diamond
Posts: 2
Hilton account altered/hacked?
Long time reader, first time post. I am going into my 9th year as Diamond with Hilton so i am pretty well versed. Several years ago I had a run of 7 hacks to my credit cards. (PITA) Struggled to find the root cause and in the end, I truly believe it was a Hilton issue as many of you know they had a major issue. I had no liability but like I said, just a PITA!
I just went into my account and I was booking a room at the Hampton Inn State College, PA for Wednesday night. As I went to the final screen, I noticed my e-mail address had an extra letter A in the middle of it. I jumped back into my account where there are 3 e-mails on file, 2 of them were the same personal address and the last was my work e-mail which is my first-dot-last name @ my company. ALL 3 had an extra A in the middle. I called the Diamond Desk where they suggested I change my password and then correct the e-mail addresses which I did.
For note, I have NOT had an issue that I am aware of and all of my points and credit cards are intact. Not sure what diverting my confirmation e-mails would do for someone but I am not an IT person to understand it. I just wanted to share this so that everyone can keep your eye out for this. It is very odd and I, nor Hilton, have an explanation. I requested the Diamond Desk report this to their IT and Security departments just in case.
HTH!!
I just went into my account and I was booking a room at the Hampton Inn State College, PA for Wednesday night. As I went to the final screen, I noticed my e-mail address had an extra letter A in the middle of it. I jumped back into my account where there are 3 e-mails on file, 2 of them were the same personal address and the last was my work e-mail which is my first-dot-last name @ my company. ALL 3 had an extra A in the middle. I called the Diamond Desk where they suggested I change my password and then correct the e-mail addresses which I did.
For note, I have NOT had an issue that I am aware of and all of my points and credit cards are intact. Not sure what diverting my confirmation e-mails would do for someone but I am not an IT person to understand it. I just wanted to share this so that everyone can keep your eye out for this. It is very odd and I, nor Hilton, have an explanation. I requested the Diamond Desk report this to their IT and Security departments just in case.
HTH!!
#382
FlyerTalk Evangelist
Join Date: Jun 2004
Location: MSP
Programs: DL PM, MM, NR; HH Diamond, Bonvoy LT Gold, Hyatt Explorist, IHG Diamond, others
Posts: 12,159
One advantage of having AwardWallet is that they notify me whenever a point balance changes.
I can't see why people think they can get away with making award reservations; why doesn't Hilton play along and arrest them when they show up?
I can't see why people think they can get away with making award reservations; why doesn't Hilton play along and arrest them when they show up?
#383
Join Date: Nov 2013
Posts: 4,374
I received this email this morning.
POINTS REDEMPTION ACTIVITY NOTICE
Dear [xxxx],
Thank you for your loyalty to Hilton! This is a courtesy message to confirm the point redemption activity on your Hilton Honors account. You may verify the specific activity and any changes made during the transaction by accessing your account on-line via Hilton Honors.
Your privacy is important to us, if you did not authorize the point redemption on your account or any changes during the transaction, please contact Hilton Honors at 1-800-446-6677 to speak with a customer service representative.
Thank you,
Hilton Honors
Despite this, I logged in and saw no activity on my account.
My account was previously compromised in the fall (around August 2017).
POINTS REDEMPTION ACTIVITY NOTICE
Dear [xxxx],
Thank you for your loyalty to Hilton! This is a courtesy message to confirm the point redemption activity on your Hilton Honors account. You may verify the specific activity and any changes made during the transaction by accessing your account on-line via Hilton Honors.
Your privacy is important to us, if you did not authorize the point redemption on your account or any changes during the transaction, please contact Hilton Honors at 1-800-446-6677 to speak with a customer service representative.
Thank you,
Hilton Honors
Despite this, I logged in and saw no activity on my account.
My account was previously compromised in the fall (around August 2017).
#384
Join Date: Mar 2015
Posts: 1,989
The guests showing up may (likely) be victims as well and honestly thought they had proper reservations after paying for the booking online in advance.
#385
FlyerTalk Evangelist
Join Date: Jun 2004
Location: MSP
Programs: DL PM, MM, NR; HH Diamond, Bonvoy LT Gold, Hyatt Explorist, IHG Diamond, others
Posts: 12,159
#386
FlyerTalk Evangelist
Join Date: Nov 2003
Location: South Florida
Programs: AA LTG (EXP), Hilton Silver (Dia), Marriott LTP (PP), SPG LTG (P) > MPG LTPP
Posts: 11,329
Maybe you need to watch a bit more TV movies... If someone is going to stealing points and selling them, they won't be using their real identity when dealing with the marks. Thieves put a lot of effort into hiding and making sure they are protected without regard for what happens to their victims.
#387
FlyerTalk Evangelist
Join Date: Jun 2004
Location: MSP
Programs: DL PM, MM, NR; HH Diamond, Bonvoy LT Gold, Hyatt Explorist, IHG Diamond, others
Posts: 12,159
Maybe you need to watch a bit more TV movies... If someone is going to stealing points and selling them, they won't be using their real identity when dealing with the marks. Thieves put a lot of effort into hiding and making sure they are protected without regard for what happens to their victims.
#388
FlyerTalk Evangelist
Join Date: Nov 2003
Location: South Florida
Programs: AA LTG (EXP), Hilton Silver (Dia), Marriott LTP (PP), SPG LTG (P) > MPG LTPP
Posts: 11,329
There are tons of ways to complete a transaction without paying cash. Between CC, Debit Cards, Zelle, PayPal, etc. it's not hard to open accounts and bail when things get hot. This is one (of many) reasons why cardholder and merchant fees are so high. And even if the phony broker loses the last few transactions they are still ahead and the victims are out lots of money.
#390
FlyerTalk Evangelist
Join Date: Nov 2003
Location: South Florida
Programs: AA LTG (EXP), Hilton Silver (Dia), Marriott LTP (PP), SPG LTG (P) > MPG LTPP
Posts: 11,329
I know someone that commited extensive fraud and the LEOs weren't interested in more cases since they didn't expect them to add any more to the sentencing for the case.