Dec 29, 2014, 12:05 am
Last edit by: WineCountryUA
This thread to follow reports of MP accounts that actually have been hacked / improperly accessed. If you have missing miles and beleive you have been hacked, contact [email protected]
In Suspended MP Accounts / Third Party Vendor "Security Breach?" - Dec 2014 there is discussion of a security breach of a 3rd party that UA seems to believe may lead to inappropriate access to UA accounts via the username method of logging into united.com. Let's follow the breach and log-in changes in the above thread.
A separate(?) "access denied" issue is covered in Consolidated " Is united.com or parts of it Down?" thread
In Suspended MP Accounts / Third Party Vendor "Security Breach?" - Dec 2014 there is discussion of a security breach of a 3rd party that UA seems to believe may lead to inappropriate access to UA accounts via the username method of logging into united.com. Let's follow the breach and log-in changes in the above thread.
A separate(?) "access denied" issue is covered in Consolidated " Is united.com or parts of it Down?" thread
UA Account Hacked / Reports of Fraudulent Award Travel Redemption
Jan 14, 2014, 1:13 pm
#77
A FlyerTalk Posting Legend
Join Date: Aug 2002
Programs: UALifetimePremierGold, Marriott LifetimeTitanium
Posts: 71,114
Navigate to Manage Profile (http://www.united.com/web/en-US/apps...t/profile.aspx). At the bottom of the first gray section should be a Saved Form of Payment area. Click "View All Saved Forms of Payment" and delete from there.
I don't think this is true. I am pmUA and at the merger continued to use my former password with my new MP #. No problems with that, it seems. The same goes for Mrs 1P.
Neither of us has ever had a PIN. The website asks me from time to time to set up a PIN, and I have always ignored it, so as far as I am concerned (and I think UA too) I just don't have a PIN at all. If I do unknowingly have one, I have no idea what it is. Same thing when I access Mrs 1P's account: it asks me to set up a PIN and I just ignore it.
Neither of us has ever had a PIN. The website asks me from time to time to set up a PIN, and I have always ignored it, so as far as I am concerned (and I think UA too) I just don't have a PIN at all. If I do unknowingly have one, I have no idea what it is. Same thing when I access Mrs 1P's account: it asks me to set up a PIN and I just ignore it.
Cheers.
Mar 12, 2014, 12:51 pm
#78
Join Date: Apr 2011
Location: New York, NY
Posts: 390
My United Account was Hacked.
Thanks to the United Airlines Corp Security department, I learned last night and this morning that there had been suspicious actiivity on my account. I was hacked. someone flew from algeria to istanbul on my miles. that same person made hotel reservations ala ME. I'm also informed that someone tried to cash out my miles into Amazon Gift cards. I didn't even know you could do that. I feel awful and freaked out. Any tips or pointers?
Here's my blog post - http://first2board.com/willrunformil...t-compromised/
if you need me, I'm busy changing passwords....
Here's my blog post - http://first2board.com/willrunformil...t-compromised/
if you need me, I'm busy changing passwords....
Mar 12, 2014, 1:04 pm
#80
Join Date: Oct 2006
Location: DCA, ex-IAH
Programs: nada
Posts: 1,368
I'm also informed that someone tried to cash out my miles into Amazon Gift cards. I didn't even know you could do that. I feel awful and freaked out. Any tips or pointers?
Here's my blog post - http://first2board.com/willrunformil...t-compromised/
if you need me, I'm busy changing passwords....
Here's my blog post - http://first2board.com/willrunformil...t-compromised/
if you need me, I'm busy changing passwords....
Also, how does a blogger with ads and a CC signup link not know that you can redeem miles for merchandise items....like gift cards?
ok--so OP sent me a pretty direct and rude PM about me+others here not having empathy. This isn't the case. I have empathy about the theft situation, but as OP of the thread might have now noticed, this isn't the first time this type of situation has happened. Also, instead of losing all her miles, OP's account was apparently flagged by UA and damage was minimal. Also, as others and myself have noted, OP has a month old blog (complete with CC signup!) and it comes across as blog spam. Maybe OP really thought she had something earth shattering to share (though why not post details here and not just on the blog?) but a quick writeup and then link to the blog really came across as a half-assed attempt at driving blog traffic here.
Last edited by crnk; Mar 13, 2014 at 9:01 am Reason: Edit to add note about OP and PM
Apr 19, 2014, 9:50 am
#81
Join Date: Feb 2009
Location: CLE
Programs: UA 1K MM, DL Plat
Posts: 982
Forced Philanthropy - multiple transactions from my account to Make-a-Wish
Well, as noble a cause as it might be, UA decided this week to donate to Make-a-Wish 3 separate times out of my MileagePlus account. Only thing is, I didn't actually approve those donations!! Maybe it's a subtle hint to shame me into donating miles??
Called an agent who informed me that "me or someone with access to my account made those donations". Given that nobody except me should have access, and I didn't do it, I'm going with either system glitch or security problem.
Agent escalated to "Corporate Security" who is supposed to get back to me in 2-3 days. Place your bets now on whether I ever see these miles again...
Called an agent who informed me that "me or someone with access to my account made those donations". Given that nobody except me should have access, and I didn't do it, I'm going with either system glitch or security problem.
Agent escalated to "Corporate Security" who is supposed to get back to me in 2-3 days. Place your bets now on whether I ever see these miles again...
Apr 19, 2014, 10:46 am
#82
Join Date: Mar 2013
Location: BDL/NYC/BOS
Programs: UA/*A Gold, Global Entry, Marriott Plat, Hilton+IHG Gold, Hertz PC, DL
Posts: 1,752
hopefully united had the integrity to match your donation.
Apr 19, 2014, 10:49 am
#83
Join Date: Mar 2007
Location: MUC
Programs: LH SEN, SQ Gold
Posts: 479
Could this possibly be related somehow to these issues?
http://www.flyertalk.com/forum/unite...ed-hacked.html
The agent's reply sounds that way...
http://www.flyertalk.com/forum/unite...ed-hacked.html
The agent's reply sounds that way...
Apr 19, 2014, 10:59 am
#84
Join Date: Oct 2002
Location: MRY
Programs: UA Platinum 2MM(BIS)
Posts: 181
A few small transactions are usually the way a criminal checks whether an account is being monitored. If there is no reaction for a while (e.g. changed password) then they will try for something much larger and hope to get away with it.
Apr 19, 2014, 12:10 pm
#88
A FlyerTalk Posting Legend
Join Date: Apr 2004
Location: GVA (Greater Vancouver Area)
Programs: DREAD Gold; UA 1.035MM; Bonvoy Au-197; PCC Elite+; CCC Elite+; MSC C-12; CWC Au-197; WoH Dis
Posts: 52,140
Apr 19, 2014, 12:26 pm
#89
Moderator: United Airlines
Join Date: Jun 2007
Location: SFO
Programs: UA Plat 1.997MM, Hyatt Discoverist, Marriott Plat/LT Gold, Hilton Silver, IHG Plat
Posts: 66,859
Apr 19, 2014, 12:28 pm
#90
Join Date: Aug 2011
Programs: UA 1K
Posts: 8,634
This is just weird.
Nope.
It's the new "it must be the Russians"...
http://en.wikipedia.org/wiki/Availability_heuristic
Nope.
It's the new "it must be the Russians"...
http://en.wikipedia.org/wiki/Availability_heuristic