1 Million Points Gone in Minutes, Wiping Out Years of Rewards

February 9, 2026

In this post Hide

1 Million Points Gone
The Pundit’s Mantra
Credit Card Offers

Disclosure: The Points Pundit receives NO compensation from credit card affiliate partnerships. Support the blog by applying for a card through my personal referral links. This article is meant for information purposes only and doesn’t constitute personal finance, legal, health or investment advice. Please consult a licensed professional for advice pertaining to your situation.

If you’ve been in the world of miles and points long enough, then I’m sure many of you must be sitting on very high balances in your accounts. However, while that it all great, there’s one aspect that people often don’t pay attention to. Account security for loyalty programs is often overlooked and it becomes even more critical once you’ve accumulated a high balance. A compromised account can be drained in minutes, wiping out years of careful earning with little recourse. One such Hilton Honors member faced exactly that, seeing over 1 million points wiped out from their account in a matter of minutes.

1 Million Points Gone

As per this Reddit post by NomadCarnivore, someone hacked into the account and not only stole 1 million points, but also canceled existing reservations in order to free up more points, so that they could be stolen. The hacker then used the points to redeem for purchases on Amazon.

___________________________________________________________________________________________________________________

“Was checking email a couple of days ago and received a confirmation that someone was attempting to access my Hilton account. I jumped online to see if I could quickly change the password and also got on the phone with Hilton. As I was doing that, there was another email saying that the account had been linked to Amazon. The rep worked quickly, but, by the time she could secure the account, over a million points were gone. All happening in real time.

I’ve communicated with the fraud department, and I am hoping that all can be restored. Other posts here indicate that they will likely set my account up under a new account number. The hackers even canceled two upcoming reservations to free up points. I’ve asked that those be reinstated. Hope that they can do that.”

___________________________________________________________________________________________________________________

The Pundit’s Mantra

If you’re wondering about Amazon.com redemptions using Hilton Honors points, I’d not encourage you, unless you really need to. you generally get a very low ratio of around 0.2 cents per point.

This incident further underscores the importance of account security, especially if you’re carrying high balances. Compared to credit card companies, airline and hotel loyalty programs often don’t have the same levels of security to protect you account. It always helps to stay ahead.

It always helps to enable tow factor authentication whenever possible. Moreover, I always make it a practice ti keep updating passwords whenever necessarily, usually at least once a year. You can also use one of many password management apps that are available in the market.

___________________________________________________________________________________________________________________

Credit Card Offers

American Express Business Credit Cards

Chase Sapphire Cards

Marriott Bonvoy

___________________________________________________________________________________________________________________

Never miss out on the deals, news and travel industry trends. Like us on Facebook, follow us on Instagram and Twitter to keep getting the latest content!

3 comments

Gene says:

February 9, 2026 at 7:14 am

@ givemeabreak — Amazon doesn’t care. This is the same slimy company that locked people’s gift card accounts with no explanation or recourse. Furthermore, the ability to liquidate these poinyts should not even be allowed, or certainly should require multiple hoops to be jumped through. Making this form of theft so easy is ultimately the vendors fault.

Reply
givemeabreak says:

February 9, 2026 at 6:43 am

Stories like this don’t make sense to me…first, my baseline is not to believe anything some random person who I know nothing about posts. I will never figure out why people just believe everything they see on the internet, especially reddit. Who is to say this isn’t a made up story by someone trying to get a few bucks from a gofundme for saps who feel bad for them. A million Hilton points gone? Where? you can’t just convert them to bitcoin. So they transferred to Amazon and got like $1400 at the current transfer rate and maybe got gift cards…Amazon can cancel the gift cards if it’s fraud and refund the points. Even if they ordered stuff, it has to ship which doesn’t happen instantly. There’s time to stop/hold any shipment. Why wouldn’t someone who is such a seasoned traveler and points person (to have over a million Hilton points) have basic two factor on their account?

Reply
1. The Points Pundit says:
  
  February 9, 2026 at 7:55 am
  
  @givemeabreak: If you’ve been watching, this is not a one off. These Amazon routed Hilton account hacks have happened in the past as well. https://thepointsguy.com/news/hilton-honors-members-amazon-accounts-drained-of-points/
  
  Reply