diff --git a/EloquentUserProvider.php b/EloquentUserProvider.php
index 69ffea72..39a744e0 100755
--- a/EloquentUserProvider.php
+++ b/EloquentUserProvider.php
@@ -148,7 +148,9 @@ public function retrieveByCredentials(array $credentials)
      */
     public function validateCredentials(UserContract $user, array $credentials)
     {
-        $plain = $credentials['password'];
+        if (is_null($plain = $credentials['password'])) {
+            return false;
+        }
 
         return $this->hasher->check($plain, $user->getAuthPassword());
     }