Skip to main content
Solved

sudden re-authorize your account in Mews Operations

  • December 19, 2024
  • 6 replies
  • 204 views
R
Forum|alt.badge.img+1

Hi everyone,

for the last few weeks, phising was very much around our ears and mews actively encouraging us to be more sensitive on that matter. What I have just recently experiencing and pretty annoyed since no pre announcement from them, that they just recently updating the security and asked each mews user to re-authorize their account. 

Once our identity is verified, we can access the mews with no limitation, however after 10 minutes, we will be autimaticaly log out and need to re-authorize again. 

10 mins time frame is way to quick, and for the FO operational, this security update intervere our operational. According to the mews digital assistance, only one time re-authorization are required, however not for my case.

Has anyone facing the same issue?. 

Best regards,

Ringga

Best answer by terry.brown

Thank you Roland for the added feedback, we appreciate it.  We will be taking into account the voice of all customers in this as we consider the best pathway forward. 

 

Naturally, the desire from both yourselves, and Mews is to have the most secure software that attackers cannot exploit, though naturally we need to make sure that you as customers are inconvenienced as little as possible for the sake of security.

 

We’ll get there together!

      Closed for Commenting

      If you have a follow-up or related question, please create a new question . This helps us keep topics up to date.

      6 Replies

      mauritsbots
      Trailblazer
      Forum|alt.badge.img+4
      • mauritsbots
      • Trailblazer
      • December 19, 2024

      Yes same here in NL - i have just received confirmation that it was not intended behavior to also block you from opening eg arrivals screen.. they are working on this!

      Questions? Brainstorm? Contact me!
        R
        Forum|alt.badge.img+1
        • r.salim
        • Author
        • Navigator
        • December 19, 2024

        Hopefully they could fix it soon and an official information to be sent out for all mews user. 

        No pre announcment and a sudden request to pre-authorize my identity rising question to myself, what I have done wrong.

        terry.brown
        Mews Employee
        Forum|alt.badge.img
        • terry.brownMews Employee
        • Mews Employee
        • December 19, 2024

        Hey folks,

         

        Firstly, please let me apologise for the disruption this has caused.  As you can likely see now, we have rolled this feature back.

         

        As you can imagine, our aim here was to provide an added layer of security for our customers, ensuring that any potential attackers were prevented from gaining access to your guest data, while maintaining as much of your normal functionality as possible.

         

        Unfortunately, we’ve had some feedback that the flow we had anticipated that would work best isn’t a perfect fit for some of you, so rather than try to repair this quickly, we have switched this feature off while we review the feedback we’ve received.

         

        Our aim will be to ensure that all activities are as secure as possible, while not hampering your usage of the product, of course, and so we will be sure to share clearly when the next iteration of this that addresses your feedback is ready to go live.

         

        Thank you for raising this, we really value it, and we’re working on improving it.

         

        Cheers,

        Terry

        R
        Forum|alt.badge.img+1
        • r.salim
        • Author
        • Navigator
        • December 19, 2024

        Hi Terry,

         

        thank you for your swift action on this matter.

        We would be very much appreciate if for future plan, anything new update related the security enhancement, can be communicated to mewser way in advance, concerning security update is very critical and sensitive thema. 

         

        R
        Forum|alt.badge.img

        Same thing happened to one of our front office staff this afternoon. Since we are close to go on holiday, today there was not much happening, and effectively he was kicked out of Mews without warning.

         

        Checking the identity from time to time would be OK, if not for one BIG PROBLEM:

        e-mail id check is NOT working properly. When clicking on the link, mews opens on staff members cell phone.  CRAZY !!!!  Even on company cellphone with mews app loaded. The link opens mews commander in the browser.

        I AM ABSOLUTELY against them working on mews on their own decives, on the other hand, I cannot afford to buy a company cellphone to each staff member accessing mews or part of it.

        I can set up a company e-mail for each staff member, but then we are back to being on the same device allowing accesss to the same device. Sorry, but this does not make sense.

        Having an Authenticator APP should be enough

        May we ask Mews to re-consider what they are doing ?

          terry.brown
          Mews Employee
          Forum|alt.badge.img
          • terry.brownMews Employee
          • Mews Employee
          • Answer
          • December 20, 2024

          Thank you Roland for the added feedback, we appreciate it.  We will be taking into account the voice of all customers in this as we consider the best pathway forward. 

           

          Naturally, the desire from both yourselves, and Mews is to have the most secure software that attackers cannot exploit, though naturally we need to make sure that you as customers are inconvenienced as little as possible for the sake of security.

           

          We’ll get there together!

          Terms and ConditionsAccessibility statement