Go Back  FlyerTalk Forums > Miles&Points > Hotels and Places to Stay > Marriott | Marriott Bonvoy
Reload this Page >

Marriott requiring me to change my password

Marriott requiring me to change my password

Old Jul 3, 19, 5:37 pm
  #1  
abk
Original Poster
 
Join Date: Sep 2007
Location: stl
Programs: AA LT Plat/8.1mm. SPG LT Titanium. UA 712,524 miles and no longer trying.
Posts: 2,918
Marriott requiring me to change my password

I just received an email for a weekend promotion with a link to Marriott. The link took me to Marriott to log in and when I attempted to it required me to change my password. I changed browsers and then computers to log in to my account and each time received the same message:
​​​​​​
Your immediate action is required.

In a continuing effort to safeguard your account, we are requiring you to change your password.

We recommend that you create a password that is unique to this site to help ensure the security of your account.

I called them and the agent was clueless and of course there is no website security department to talk to as they only have an email link and not a phone number. I did ask the agent to make sure my points were still there.

Anyone else having this issue?

edited to add that I received the same message on my phone so it must be legitimate.

Last edited by abk; Jul 3, 19 at 5:50 pm Reason: Add information
abk is offline  
Old Jul 3, 19, 5:53 pm
  #2  
Company Representative, Marriott Bonvoy
 
Join Date: Feb 2019
Programs: Marriott Bonvoy
Posts: 350
Originally Posted by abk View Post
I just received an email for a weekend promotion with a link to Marriott. The link took me to Marriott to log in and when I attempted to it required me to change my password. I changed browsers and then computers to log in to my account and each time received the same message:
​​​​​​
Your immediate action is required.

In a continuing effort to safeguard your account, we are requiring you to change your password.

We recommend that you create a password that is unique to this site to help ensure the security of your account.

I called them and the agent was clueless and of course there is no website security department to talk to as they only have an email link and not a phone number. I did ask the agent to make sure my points were still there.

Anyone else having this issue?

edited to add that I received the same message on my phone so it must be legitimate.
Our apologies for any inconvenience, but this can happen from time to time. Members will occasionally be asked to change their online Passwords upon sign in. If asked about this, we are supposed to advise:
  • This is a normal process and you should not be alarmed
  • Password resets are in place to help protect your Personal and Account Information
Marriott Bonvoy Lurker is offline  
Old Jul 3, 19, 6:07 pm
  #3  
 
Join Date: Jan 2004
Location: YUL
Posts: 898
Obviously a scam, at least in my opinion. When it’s beginning with “Immediate action required”, I do not answer.
LearningToFly is offline  
Old Jul 3, 19, 6:33 pm
  #4  
 
Join Date: Apr 1999
Location: Homosassa, FL & Wanaque, NJ -UA-G; SPG-Plat (Lifetime Gold)
Posts: 6,112
Simply searching "does requiring a password change increase security" shows that most studies end up determining that it does little to increase security and may actually decrease it. But, YMMMV.
Vulcan is offline  
Old Jul 3, 19, 6:36 pm
  #5  
A FlyerTalk Posting Legend
 
Join Date: Apr 2004
Location: GVA (Greater Vancouver Area)
Programs: DREAD Gold; UA 1.021MM; Bonvoy Au-197; PCC Elite+; CWC Au-197; CCC Elite*; WoH Dis
Posts: 49,956
Originally Posted by Vulcan View Post
most studies end up determining that it does little to increase security and may actually decrease it.
It's called "security theatre".
mahasamatman is offline  
Old Jul 3, 19, 6:54 pm
  #6  
 
Join Date: Dec 2006
Location: SNA
Programs: Bonvoy Tit Forever, AmEx Plat, National EE, WN CP, CLEAR
Posts: 4,192
Just don't log into sites you're directed to via email links as a matter of course. Safer that way.
kennycrudup is offline  
Old Jul 3, 19, 8:15 pm
  #7  
abk
Original Poster
 
Join Date: Sep 2007
Location: stl
Programs: AA LT Plat/8.1mm. SPG LT Titanium. UA 712,524 miles and no longer trying.
Posts: 2,918
William thanks for the quick reply on the eve of a holiday weekend. That is really you and I can disregard the other posts?
abk is offline  
Old Jul 3, 19, 8:28 pm
  #8  
FlyerTalk Evangelist
 
Join Date: Mar 2005
Programs: ua mm, starriott LTPP, ihg plat, hh gold.
Posts: 12,893
william usually signs his posts, doesn't he? could be another of the lurkers...

anyway, to be safe, try to log into marriott.com. if that requires a password change, do it. like you, I'm *very* suspicious of links in emails--as stated above, best course of action is not to log into sites you get to through an email link.
karenkay is offline  
Old Jul 3, 19, 8:33 pm
  #9  
A FlyerTalk Posting Legend
 
Join Date: Apr 2004
Location: GVA (Greater Vancouver Area)
Programs: DREAD Gold; UA 1.021MM; Bonvoy Au-197; PCC Elite+; CWC Au-197; CCC Elite*; WoH Dis
Posts: 49,956
Originally Posted by karenkay View Post
william usually signs his posts, doesn't he?
He did.

Originally Posted by karenkay View Post
best course of action is not to log into sites you get to through an email link.
The best advice is simply to never click a link in an email.
karenkay likes this.
mahasamatman is offline  
Old Jul 3, 19, 8:48 pm
  #10  
FlyerTalk Evangelist
 
Join Date: Nov 1999
Posts: 23,171
If its legit you wont beable to login unless you change your pin. I ran into this yesterday and dont recall getting an email to do so

But its not so simple, after I clicked to reset my pin, and inputted all the requested info and receieved a temp password via email to confirm everything, it was a total waste of my time. Went thru it twice and both times it didnt pick up on my new pin so I had to login using my old pin which of cause got me to the pg to change my pin. So I called up and the audio line doesnt recognize my tel#.

end result was the csr sent me an email that sent me to reset my pin and finally it took and I was able to gain access to my acct

Just gotta LUV being BONVOYED
craz is offline  
Old Jul 3, 19, 8:52 pm
  #11  
 
Join Date: Nov 2001
Location: GEG
Programs: Marriott Titanium, Hilton Gold (from CC), Lifetime SkyClub
Posts: 2,144
Originally Posted by abk View Post

Anyone else having this issue?
Yeah, me, a couple of days ago. Got the same message.

Went directly to the website and it forced me to change my password.
dgreen12 is offline  
Old Jul 3, 19, 10:07 pm
  #12  
 
Join Date: May 2008
Location: BDL
Programs: Marriott Plat Elite, Formerly SPG Plat 100), HHonors Gold
Posts: 19
Originally Posted by mahasamatman View Post
It's called "security theatre".
My cynical side makes me assume that password has been compromised whenever a website fails to recognize my correct password (and/or user name) or requires an immediate reset.

It’s been happening more and more lately. Color me skeptical.
Jane
JaneStarr is offline  
Old Jul 3, 19, 11:56 pm
  #13  
FlyerTalk Evangelist
 
Join Date: May 2002
Location: Pittsburgh
Programs: MR/SPG LT Titanium, AA LT PLT, UA SLV, Avis PreferredPlus
Posts: 27,365
Originally Posted by LearningToFly View Post
Obviously a scam, at least in my opinion. When it’s beginning with “Immediate action required”, I do not answer.
So logging into Marriott's site with your existing ID/pwd and getting this message is obviously a scam?

Who exactly are you not going to answer?

How will you ever log in to Marriott's site it it is forcing you to change your password and you "do not answer"?

Originally Posted by kennycrudup View Post
Just don't log into sites you're directed to via email links as a matter of course. Safer that way.
Good general advice, but not relevant to OP.

And yes, many common "security" processes are laughed at by security professionals. Force a user to change passwords every 60 days, with no repeats, and they'll start writing in on a sticky at their desk to keep track of it.
CPRich is offline  
Old Jul 4, 19, 12:01 am
  #14  
FlyerTalk Evangelist
 
Join Date: May 2002
Location: Pittsburgh
Programs: MR/SPG LT Titanium, AA LT PLT, UA SLV, Avis PreferredPlus
Posts: 27,365
Originally Posted by JaneStarr View Post
My cynical side makes me assume that password has been compromised whenever a website fails to recognize my correct password (and/or user name) or requires an immediate reset.
Our company once sent out a "It's cyber security month, so we are requiring everyone to change their passwords by 6p today or you will be locked out."

Needless to say, that wasn't why.
CPRich is offline  
Old Jul 4, 19, 8:39 am
  #15  
FlyerTalk Evangelist
 
Join Date: Mar 2005
Programs: ua mm, starriott LTPP, ihg plat, hh gold.
Posts: 12,893
Originally Posted by mahasamatman View Post
He did.

The best advice is simply to never click a link in an email.
oddly, i didn’t—and still don’t—see the signature on my end.
you're absolutely right about the email links, of course.
karenkay is offline  

Thread Tools
Search this Thread
Search Engine: