• Hey there! Welcome to TFC! View fewer ads on the website just by signing up on TF Community.

Urgent Security Concerns with Accor Accounts: Multiple Hacks Reported

Apply For Lifetime Free IDFC First Credit Card
TechnoFino

TechnoFinoTechnoFino is verified member.

Founder
TF Family
Founder
Admin
Recently, one of our members, Nikhil, posted about a fraud incident that happened to him. His Accor account was hacked, and about 130,000 Accor points were used to order a mobile phone to a German address [Original Report Link: Click Here ]. After his post on the TF Community, I shared this on Twitter (X). Fortunately, Nikhil got his points back. However, I have received a few more DMs from some X users reporting that their accounts were also hacked recently, and they are fighting to get their points back. This raises a serious question mark about Accor's security system. How can Accor, one of the biggest hotel chains in the world, not make their security system strong enough to tackle hackers?

I'm mentioning three reports here:

1. Aruj, an X user, reported that his account was hacked and about 59,200 points were used to order some items to a German address.​
Screenshot_20240521_131317_X.jpg
2. Sane, an X user, reported that his Accor account was hacked, his email ID was changed, and about 376,000 points were redeemed to order some items. He changed his account password, but the hacker still accessed his account because it was logged in earlier and we don't have an option to log out from all devices. He changed his email ID, but the hacker changed it again. He then changed his email ID 13 times, and the hacker changed it each time. Yet, Accor's system did not flag this as unusual activity. Amazing!​
Screenshot_20240521_131224_X.jpg Screenshot_20240521_133703_X.jpg Screenshot_20240521_133642_X.jpg
3. Himir, an X user, reported that his account was also hacked.​
Screenshot_20240521_131150_X.jpg


These incidents raise serious questions about Accor's security system. Accor sometimes blocks genuine customers' accounts just for accessing them from a public Wi-Fi connection or from a different location. But how is Accor not blocking these hackers?

Questions Accor Should Answer:
  1. Why don't we have the option to log out from all devices?
  2. Why don't we have two-factor authentication?
  3. Is changing the email ID repeatedly not considered unusual activity?
  4. Is there any data leak from Accor? How are hackers managing to access multiple Accor accounts recently?
What Should You Do?
  1. First of all, change your Accor account password. If there is any data leak, this might prevent your account from getting hacked.
  2. Check your account regularly, at least until Accor starts offering a 2FA system.
  3. If you notice any fraud, immediately report it to Accor. If the hacker orders something, contact the store as well and report it as fraud.
We can't do much more than this at the moment. We should urge Accor to provide a 2FA security system as soon as possible. Accor has a great hotel loyalty program, but such a horrible security system.
 
Apply For LTF AU LIT Credit Card
In this case, we can't do much. Only the ACCOR team can do something about it. They need to upgrade their system and make two-step verification compulsory.
 
Riya Sharma said:
Yes you can also do the same. Look up accor limitless experience. But the value per point you get will be very bad.
Click to expand...
Although, delivery isn't as smooth as Germany or other foreign countries. You have to pay customs and it will be international shipment.
jayanthvinay said:
How can anyone order iPhone using accor points? Can we also do the same?
Click to expand...
Yupp
 
You must log in or register to reply here.

Similar threads

vishalm
Surname Mistmatch with Accor account and ID proofs, guide on international hotel check-ins
Replies
3
Views
414
aswathsm
aswathsm
Subhankar
  • Sticky
Accor Account Suspension Reason Solution and Pre-cautions
Replies
6
Views
1K
maverickgenius
M
Back
Top