Why does Marriott require such frequent password changes?
Jul 23, 2019 | 6:52 pm
#1
Original Poster
Join Date: Nov 2001
Location: Toronto, ON
Programs: Marriott LTT, AA LTG MM, AC 25K
Posts: 3,983
Why does Marriott require such frequent password changes?
Logged on tonight, required to change password for 4th time this year. Anyone else having this problem? I'm good with security, but this is getting a bit ridiculous.
Jul 23, 2019 | 6:57 pm
#2
Join Date: Feb 2008
Location: In the air
Programs: Finnair Platinum, Bonvoy LT Plat, GHA Tit, Turkish Elite
Posts: 9,176
Jul 23, 2019 | 7:17 pm
#5
Join Date: Jun 2005
Location: ORD (formerly SAN)
Programs: Hilton Diamond; IHG Platinum; Bonvoy Gold; AA Platinum Pro; United Premier Platinum
Posts: 1,934
I think it depends if your email was in previous breaches. I get frequently asked to change my password by Marriott, but my info has been compromised in the past.
Jul 23, 2019 | 7:18 pm
#6
A FlyerTalk Posting Legend
Join Date: Apr 2004
Location: GVA (Greater Vancouver Area)
Programs: D.R.E.A.D. Gold card holder
Posts: 53,191
Jul 23, 2019 | 7:20 pm
#7
Join Date: Feb 2008
Location: In the air
Programs: Finnair Platinum, Bonvoy LT Plat, GHA Tit, Turkish Elite
Posts: 9,176
Jul 23, 2019 | 9:51 pm
#9
A FlyerTalk Posting Legend
Join Date: Apr 2013
Location: PHX
Programs: AA EXP; UA 1MM & PP; Marriott AMB; Hyatt Globalist; Hilton Diamond (Aspire)
Posts: 62,311
I was just forced to change password last week.
I do think that when talking about Marriott IT, "why" questions are somewhat pointless.
I do think that when talking about Marriott IT, "why" questions are somewhat pointless.
Jul 24, 2019 | 6:24 am
#10
Join Date: Sep 2004
Programs: USAir
Posts: 429
Those who actually are security experts do know that forcing frequent password changes causes more security breaches not less.
Those who force frequent password changes and those who force using email address as login id -- are proving that they know little about security.
Those who force frequent password changes and those who force using email address as login id -- are proving that they know little about security.
Jul 24, 2019 | 6:35 am
#11
Join Date: Oct 2013
Location: ORD
Programs: UA Silver, Marriott Platinum/LT Platinum, Hilton Gold
Posts: 5,639
I changed my password voluntarily some time in fall 2018. I had the same password for probably 10 years before that, and haven't been prompted since. Whether it's due to the breach or not, it sounds like the OP falls into some type of special security group.