Just when you thought it was bad enough keeping track of, managing, and protecting your entire collection of points and miles credit cards from identity theft, just wait until you hear this one: cyber criminals and schemes may now be after your precious points and miles collection.
I came across an interesting article this morning on CBS Boston about cyber criminals not only targeting credit card and personal information, but also frequent traveler points and miles.
The new trending phishing scheme is designed similarly to bank/personal account phishing schemes (e.g. a fake email from PayPal asking to validate your account info immediately or it will be shut down), by sending out fake flight or award-booking emails from airline carriers. The phishers’ objectives are that the recipient becomes alarmed by the booking and quickly “logs in” to their airline account to investigate the booking that they obviously have not made, thus giving their personal account details to the criminals.
Under this scheme, the miles are stolen, redeemed for airline tickets, and then resold to a third party. Unlike having your identity stolen, which is pretty easy to detect with modern-day credit-monitoring programs (I use CreditSesame and CreditKarma), the average person (aka, not points and miles geeks, of course) is often unaware of any changes in their points and miles award balances unless they are actively keeping track of their activity.
Sadly, I can imagine that most of these cases go undetected until the victim actually begins planning their vacation and logging in to see they have been robbed.
What are your thoughts? What lengths do you go to protect your points and miles (and personal information, of course)?