PSA IHG not having 2FA is causing alot of IHG users to be hacked
I am a person who has large knowledge with security and privacy. I have tons of layers of security both my personal and professional life both on paper trails and digital trails. But nothing protects you with a company that is neglecting youre own security. I even rotate my password and refresh it every 6-12 months, sometimes more often than my most job request their employees to refresh their passwords.
Today, I learned that IHG allowed a stranger to log in to my account and book with my points without giving me any kind of notification or alert. Instead, the scammer tried to send me and spam my inbox to confuse me from seeing the "confirmation" email that they booked 3 nights under my name.
What should have been a very relaxing night for me, end up me figuring out whats happening, changing password on ALL of my accounts, because IHG cant tell me how those scammers were able to get my account information. And lastly, dealing with IHG to claim back all my points.
This is unbelievable and very time consuming. The only good thing is that they told me that they are working on a 2FA system to be put live around 2nd/3rd quarter of this year. I cant believe that even with all of my precautions, it only took one flaw of a company to get my account comprimise.
So anyone who starts having spams all over the email inbox, check your IHG first.
Thanks for letting me vent.