andyrb
Member
- Joined
- May 4, 2023
- Posts
- 183
Woke up this morning to an email from ALL Accor advising of a "security incident":
A second email arrived with a password reset request.
I'm assuming these are legitimate, however I'd suggest not clicking the password reset link in the email, instead doing it directly via the Accor website.
We wish to inform you that a security incident occurred on 11 July 2026 at one of our service providers. A malicious third party managed to gain unauthorised access to one of our tools used to view certain Accor customer data, including members of the ALL loyalty programme.
This incident may have enabled this third party to obtain certain information about you, whether this is data provided in your ALL account (if you hold one) or data you may have provided during your interactions with our services.
Depending on the information you have provided in your particular circumstances, the following data may be affected: identity details, contact details, identity documents, ALL programme details and benefits, stay details, stay preferences, marketing and communication preferences, and satisfaction survey data. In this respect, we assure you that no banking information is among the data compromised by this incident.
A second email arrived with a password reset request.
I'm assuming these are legitimate, however I'd suggest not clicking the password reset link in the email, instead doing it directly via the Accor website.
