My SPG Account Got Hacked

 
Old Jan 16, 15, 3:23 pm
  #151  
 
Join Date: Oct 2002
Location: SYD
Programs: QF Emerald EY Plat HH D
Posts: 1,213
the spg website is very very slow
finally got in after about a 5 min wait . changed my password.

Last edited by aussielori; Jan 16, 15 at 3:34 pm
aussielori is offline  
Old Jan 16, 15, 3:45 pm
  #152  
Company Representative - Starwood
 
Join Date: Nov 2000
Location: Austin, Texas
Programs: Marriott Employee Level
Posts: 31,593
Originally Posted by LovetoTravel83 View Post
Lurkers, Should we be worried?
We are aware of the reported issues and already have an ongoing investigation. Please be assured SPG takes the privacy and security of our guest information seriously, and should you ever notice any unusual activity on your SPG account, please contact the customer service team for assistance.

Best regards,

William R. Sanders
Social Media Specialist
Starwood Hotels & Resorts Worldwide

[email protected]
Starwood Lurker is offline  
Old Jan 16, 15, 8:35 pm
  #153  
 
Join Date: Feb 2010
Location: SFO
Programs: AS MVP, Hyatt Globalist
Posts: 753
I just went to check my account and it's not working.
By trying recover the password it says

Your login information is correct, however due to a period of inactivity your account needs to be updated. Please contact your nearest Customer Contact Center to update your account.

I didn't receive any emails and my account does have activities in December, is that hacked as well :S
zig2 is offline  
Old Jan 16, 15, 10:23 pm
  #154  
FlyerTalk Evangelist
 
Join Date: Jan 2007
Location: BOS/UTH
Programs: AA EXP, LT PLT; QR PLT; Bonvoy LT TIT
Posts: 12,600
Originally Posted by britinva79 View Post
Received an email from SPG tonight that someone changed my email address on my SPG account and then at the same time points started flowing out to redeem Amazon gift cards. $200 in gift cards were illegally redeemed from my account. SPG have frozen my account so that they can investigate this and prevent any further theft. Encourage everyone to watch out as the hackers have already targeted AA and UA and maybe they are now going after hotels?
You may want to make a report to your local police, too, just to cover yourself.
Dr. HFH is offline  
Old Jan 17, 15, 12:07 am
  #155  
 
Join Date: Apr 2013
Posts: 167
Server error all day, can't even access the site.
fyugioh is offline  
Old Jan 17, 15, 1:12 am
  #156  
 
Join Date: Jul 2006
Location: York, PA
Programs: MRSPG LT Tit, HH Diamond, Hertz Pres.
Posts: 1,708
Originally Posted by Starwood Lurker View Post
We are aware of the reported issues and already have an ongoing investigation. Please be assured SPG takes the privacy and security of our guest information seriously, and should you ever notice any unusual activity on your SPG account, please contact the customer service team for assistance.

Best regards,

William R. Sanders
Social Media Specialist
Starwood Hotels & Resorts Worldwide

[email protected]
other than password changes, is there anything proactively we need to do? Save statements? or folios?
etsmyers is offline  
Old Jan 17, 15, 1:25 am
  #157  
JBD
 
Join Date: Apr 2005
Posts: 521
Originally Posted by britinva79 View Post
...as the hackers have already targeted AA and UA and maybe they are now going after hotels?
Hilton was already hacked, below is the sticky. (There are even posts showing how the stolen points are sold, post numbers: 75, 78, 103, 104)

http://www.flyertalk.com/forum/hilto...ct-2014-a.html
JBD is offline  
Old Jan 17, 15, 10:35 am
  #158  
 
Join Date: Jul 2009
Posts: 269
SPG Account Hacked

Since reporting the issue to SPG they had promised to lock the account. They failed to do so and now another 150,000 points are missing. This is disgraceful customer service. I was promised the account would be secured to prevent this but apparently that wasn't a high enough priority. I may need to speak with the media about this to ensure others are aware and also consult an attorney.
britinva79 is offline  
Old Jan 17, 15, 11:10 am
  #159  
Suspended
 
Join Date: Jan 2003
Posts: 8,720
OP, you may have some issues with many of your accounts as you reported some problem with an AMEX offer and Hyatt, as well, as I recall.
NJUPINTHEAIR is offline  
Old Jan 17, 15, 6:24 pm
  #160  
Company Representative - Starwood
 
Join Date: Aug 2011
Programs: SPG
Posts: 713
Originally Posted by etsmyers View Post
other than password changes, is there anything proactively we need to do? Save statements? or folios?
Great question etsmyers. There is no need to take any additional steps other than checking your account often, strengthening your online passwords, and practicing general internet security awareness (not using the same user name and password across multiple sites; not using your email as your user name; using complex passwords with capital letters, numbers and symbols; keeping antivirus current and performing regular device maintenance; and immediately reporting any suspicious activity on your account to us).

Best regards,

Christopher Carman
Social Media Specialist
Starwood Hotels & Resorts Worldwide

[email protected]
Starwood Lurker IV is offline  
Old Jan 17, 15, 6:28 pm
  #161  
Company Representative - Starwood
 
Join Date: Aug 2011
Programs: SPG
Posts: 713
Originally Posted by britinva79 View Post
Since reporting the issue to SPG they had promised to lock the account. They failed to do so and now another 150,000 points are missing. This is disgraceful customer service. I was promised the account would be secured to prevent this but apparently that wasn't a high enough priority. I may need to speak with the media about this to ensure others are aware and also consult an attorney.
britinva79 - we have reached out to you through Private Message. You have our full attention and we will work with you throughout all of this.

As mentioned earlier, if anyone should notice any unusual activity on your SPG account, please contact the customer service team for assistance.

Best regards,

Christopher Carman
Social Media Specialist
Starwood Hotels & Resorts Worldwide

[email protected]
Starwood Lurker IV is offline  
Old Jan 17, 15, 6:39 pm
  #162  
 
Join Date: Aug 2011
Location: WAS
Programs: SPG LTG, DL Plat
Posts: 1,648
Do we know at what point most accounts are hacked? Is it people using public wifi? Brute force attacks with just guessing millions of passwords on SPG's site? Would be helpful to know how it happens most often...
DC777Fan is offline  
Old Jan 17, 15, 8:35 pm
  #163  
Original Member
 
Join Date: May 1998
Location: New York, NY, USA
Programs: AA 2MM, Bonvoy LTT
Posts: 12,268
SPG Account Hacked

More likely malware on victim machine.
seawolf is offline  
Old Jan 18, 15, 7:25 am
  #164  
 
Join Date: Mar 2006
Location: Miami, FL, USA
Posts: 3,885
Originally Posted by seawolf View Post
More likely malware on victim machine.
Happened to me too, overnight last night. And no, it was not malware on victim machine.
aviators99 is offline  
Old Jan 18, 15, 10:36 am
  #165  
 
Join Date: Dec 2013
Location: 32.7758 N, 96.7967 W
Programs: AA EXP,SPG 75
Posts: 317
SPG, you really need two factor authentication.
YouGeeElWhy is offline  

Thread Tools
Search this Thread
Search Engine: