How dangerous is it if some stranger got ahold of your Rapid Rewards # and...
Jul 8, 2009, 11:19 am
#1
FlyerTalk Evangelist
Original Poster
Join Date: Aug 2002
Location: Department of Homeland Sincerity
Programs: WN Platinum
Posts: 12,085
How dangerous is it if some stranger got ahold of your Rapid Rewards # and...
I was looking at an previous travel made at the beginning of this year, and realized I never got an email confirmation for this flight in my email account.
I take screenshots during the booking process, so I went back to the screen shots and realized that I had sent the purchase confirmation to a wrong email. I had wanted to send the flight purchase confirmation to (eg) "myswaemail.com" and instead sent it to "myemail.com".
So now a stranger has my name, RR#, and the last 4 digits of my credit card.
I'm just wondering if this poses any danger to that person trying to access my RR account, and if I should take other steps to protect my RR account, like maybe asking for a new RR# or additional passwords / protections?
I take screenshots during the booking process, so I went back to the screen shots and realized that I had sent the purchase confirmation to a wrong email. I had wanted to send the flight purchase confirmation to (eg) "myswaemail.com" and instead sent it to "myemail.com".
So now a stranger has my name, RR#, and the last 4 digits of my credit card.
I'm just wondering if this poses any danger to that person trying to access my RR account, and if I should take other steps to protect my RR account, like maybe asking for a new RR# or additional passwords / protections?
Jul 8, 2009, 11:22 am
#2
Join Date: Sep 2001
Location: San Diego, CA
Programs: UA 1K MM, AA Gold, SPG Plat, HH Gold
Posts: 991
Have you sent email to that other email address? It might not even exist. Send an email and see if it bounces or not. I think the odds of someone having the exact same email name on a different domain are pretty slim.
Jul 8, 2009, 11:24 am
#3
FlyerTalk Evangelist
Original Poster
Join Date: Aug 2002
Location: Department of Homeland Sincerity
Programs: WN Platinum
Posts: 12,085
I did send an email and got no reply. That email does exist, it's a free email address, and I tried to register for it and was told that it was not available for registration, meaning someone else has it.
Jul 8, 2009, 11:38 am
#4
Join Date: Nov 2006
Location: SJC and ONT
Programs: WN A-List/CP, HHonors Diamond, CX J with AA miles, US Gold/*G
Posts: 2,082
Seriously, if that were to happen to me, I would not worry much about but do these things just out of general principle:
1. Change my RR password to something really long and complex.
2. Ask Chase (or whoever) to issue me a new card number.
If it were an e-mail for a future itinerary, then I'd be concerned. Very easy for someone to cancel my trip and use the TTF for a weekend in LAS.
Jul 8, 2009, 11:43 am
#5
FlyerTalk Evangelist
Original Poster
Join Date: Aug 2002
Location: Department of Homeland Sincerity
Programs: WN Platinum
Posts: 12,085
What's your RR password? I'll log in and check your RR account for any suspicious activity.
Seriously, if that were to happen to me, I would not worry much about but do these things just out of general principle:
1. Change my RR password to something really long and complex.
2. Ask Chase (or whoever) to issue me a new card number.
If it were an e-mail for a future itinerary, then I'd be concerned. Very easy for someone to cancel my trip and use the TTF for a weekend in LAS.
Seriously, if that were to happen to me, I would not worry much about but do these things just out of general principle:
1. Change my RR password to something really long and complex.
2. Ask Chase (or whoever) to issue me a new card number.
If it were an e-mail for a future itinerary, then I'd be concerned. Very easy for someone to cancel my trip and use the TTF for a weekend in LAS.
You do address the possibility of someone with a lot of power once they get ahold of your name and itinerary #. That person could cancel your flight and use the flight funds for him/herself.
Perhaps in the future this could be improved, such as asking for a pre-established pin # when cancelling a flight, and requiring the pin # when trying to use the funds from the cancelled flight.
Jul 8, 2009, 11:52 am
#6
Join Date: Nov 2006
Location: SJC and ONT
Programs: WN A-List/CP, HHonors Diamond, CX J with AA miles, US Gold/*G
Posts: 2,082
Agreed. If not a pin, then something simple like asking my pet's name.
Jul 8, 2009, 12:20 pm
#7
Company Representative - Southwest Airlines
Join Date: Nov 2007
Location: Dallas, TX
Programs: Rapid Rewards, IHG/Kimpton, Bonvoy, AA/oneworld, British Airways
Posts: 802
While all of these are interesting ideas . . .
We don't currently have a huge problem with this.
It would take significant programming to make these changes.
Customers (including some of you) already don't like going through the captcha to check fund balances, so you can imagine how well-received this type of extra step would be
Not saying it won't ever happen - just that it isn't a problem right now.
We don't currently have a huge problem with this.
It would take significant programming to make these changes.
Customers (including some of you) already don't like going through the captcha to check fund balances, so you can imagine how well-received this type of extra step would be
Not saying it won't ever happen - just that it isn't a problem right now.
Jul 8, 2009, 1:56 pm
#8
Join Date: Mar 2009
Location: SEA
Programs: Hertz 5*, SPG Gold, Hilton Silver, Very Confused
Posts: 683
I've posted this before, but if you have the same name as someone else on the same or another WN flight at your airport, you can access that person's boarding pass and address on their receipt since the kiosks seem to only check the name on the CC you use to checkin. sure, there are easier ways for a dishonest person to get TTF or physically steal from you, but this was a bit shocking when I got someone elses flight ticket at OAK a few months ago