Magic Vacation Title Outlook email hacker is sending fake files to download

[Jaydee51]

I called member services and they stated that in the past they accepted requests via Fax.
Since they are now working from home, the only way to add a password is to Mail in the request so they can validate your signature (don't shoot the messenger).
Yes, I asked if a letter can be written, signed and scanned to them and they said NO.
Not sure what the "signature validation" difference is between faxing and scanning but i was surprised at the response too.
If anyone finds a different (more efficient) way to process, please let us know.

Instructions for letter:
-Your Name
-address
-email
-phone number
-Member number
-Brief sentence requesting a password be added to your account (include the desired password)
-Sign the letter

Mail to:
DVC Member Services
1390 Celebration Boulevard
Celebration, Florida 34747

 

[LadybugsMum]

I am so glad I decided to do a wire transfer and didn't email any of my credit card info.

Good luck to everyone who went that route.

 

[RoseGold]

OMG That explains that email!

DON'T WIRE BEFORE YOU CALL THE OFFICE FOLKS!

I scanned a credit card authorization form for the deposit too, ugh. So, looks like I need a new credit card number.

 

[Stitchescape]

They definitely haven’t been proactive in warning clients - not even overseas clients closing imminently, who likely will have done everything online. I only found out after receiving several weird emails, and specifically asking what they were! Tbh the lack of transparency could well put me off using them in future.

 

[kanerf]

I just got one of these emails. It was based on a closing from last year.

 

[luvdisneyland]

They definitely haven’t been proactive in warning clients - not even overseas clients closing imminently, who likely will have done everything online. I only found out after receiving several weird emails, and specifically asking what they were! Tbh the lack of transparency could well put me off using them in future.

I'm not really sure what you expect them to do, they were hacked so they aren't aware of who got an email. They can't call or email every single person who's been ever been in their database. When I called them today, their recording did mention the hack and their email response says the same. It seems they are doing all they can. Get mad at the loser hackers instead of the victims trying to do business.

 

[RoseGold]

I'm not really sure what you expect them to do, they were hacked so they aren't aware of who got an email.

Um, I’m mid purchase and think I deserved an email. I found out here.

Hackers do this with normal title companies and realtors all the time — and people have actually closed with the wrong wire.

 

[RanDIZ]

OMG That explains that email!

DON'T WIRE BEFORE YOU CALL THE OFFICE FOLKS!

I scanned a credit card authorization form for the deposit too, ugh. So, looks like I need a new credit card number.

I sent the same CC form last week. Today, I never got an email or anything letting me know the status. I also called and left a message. If it’s only effecting those who opened a bogus email, then that’s fine. I guess only time will tell. I still shut my card off just in case. I’ll now be requesting a new CC.

 

[luvdisneyland]

Um, I’m mid purchase and think I deserved an email. I found out here.

Hackers do this with normal title companies and realtors all the time — and people have actually closed with the wrong wire.

Right, but if they don't know you received a scam email, how can they let you know? Again, if this all happened today, I'm sure they are busy answering the tons of phone calls and emails along with dealing with their IT dept. I doubt they have the time to call every single client in their system with a pending deal. As I said, they are victims too trying to deal with what I am sure is a giant nightmare.

 

[RoseGold]

Right, but if they don't know you received a scam email, how can they let you know?

They don’t know what the scammer sent, but they know that I am ready to close and pay. They have my email, my phone number. So does my broker.

And instead I found this out on a messsge board.

 

[sethschroeder]

I'm not really sure what you expect them to do, they were hacked so they aren't aware of who got an email. They can't call or email every single person who's been ever been in their database. When I called them today, their recording did mention the hack and their email response says the same. It seems they are doing all they can. Get mad at the loser hackers instead of the victims trying to do business.

They should inform everyone via email regarding the leak and that spoof emails are going out. That is what they should do.

They have everyone's email and a blind copy email can go out to every individual from an alias. A link can point to a website address where updates will be posted. In addition it can state the alias will be monitored but will be delayed in any response.

 

[luvdisneyland]

They don’t know what the scammer sent, but they know that I am ready to close and pay. They have my email, my phone number. So does my broker.

And instead I found this out on a messsge board.

OK, enjoy being angry and focusing on who to blame.. Merry Christmas.

 

[RoseGold]

The email actually spoofed my broker. I’m surprised I have nothing from them either.

 

[sethschroeder]

OK, enjoy being angry and focusing on who to blame.. Merry Christmas.

I mean its not called being angry to expect a company dealing with your personal information including financial information disclosing they were hacked and information may have been leaked.

I just call it common sense. We will see if they reach out in the next day or two. What is worse is they don't leverage a secured payment system and their payment alias was compromised.

So no not angry but not going to just give them a blanket pass on any responsibility.

 

[RoseGold]

Ethics aside, youd think notice would be good just for the logistics of completing the open sales.

This is a known scam in real estate, and hard to complete the deal when your customer wired five figures to some scammer.

 

[TwoHeartsBeat]

I saw the emails today, but didn't click anything because the email address looked foreign. Thanks for the heads up about the hack. I just cancelled my card.

 

[Grumpy Mouse]

In order for *** to be PCI (Payment Card Industry) compliant, that mvtservice.com web address must be a secure, ENCRYPTED, connection. If it is - though hackers might have access to sensitive personal and credit card e-mails - they wouldn't be able to read them. Modern encryption is basically unbreakable.

If the connection is not a secure, encrypted, connection - plan on *** being out of business in a few weeks - if not sooner. I can't imagine that being the case - the potential legal exposure for a title company to be out of PCI compliance would be beyond stupid. I guess alternatively they could have been downloading the completed CC authorization forms and then permanently deleting the e-mails, but they HAD to have some protocol in place to protect a client's personal and CC information.

To not do so would be essentially inviting bankruptcy.

When I called them today I got the recorded messages like everyone else; I'll try to call again tomorrow to see if I can speak with an actual person. I'd like to know what my potential exposure is before I request yet another new credit card number.

And I'm pretty sure if they're not transparent about potentially compromised CC information - they can get their pants sued off. Which might happen anyway...

 

[Stitchescape]

Their response to me was just that there’s a virus circulating NOT that they’ve been hacked and my personal information may have been compromised. Knowledge is power but silence gives low life hackers time to exploit. I hope that the hackers aren’t rewarded for their efforts.

 

[Lesserlion]

So I'm not so sure this was a hack of an outlook server. All of their MX records (where email should go for their domain name) point to Google/Google Suite as their mail host. This could just be an isolated account hack in that case. </random-techno-babble>

Hunting these things down takes time. It could be months until they really figure out how much information they got access to. But if their email system is handled by Google, they're also limited on their own investigations as they'll have to rely on the provider for more information.

Should they notify their customers as soon as possible that there was an incident? Yes. But if the email is compromised, then they'd need to either call every client (probably not feasible), or snail-mail a letter. Again, that takes time.

I certainly don't think it wrong for anyone to feel angry/frustrated and concerned. It's a violation of a personal security bubble (among other things). I'm just not sure how much faster they'd be able to notify customers in an efficient manner.

 

[jimmyg0322]

Not sure if someones mentioned it yet but also something to keep in mind is if you purchased a resale contract from an international seller. The process requires you to provide your SSN (for the FIRPTA tax) in certain documents to the title company. Might want to monitor your credit scores if thats the case for you.