New security notification during signin

[crvetter]

Thanks for the dialog, all! Having read the first several posts of this thread, I logged in and received an email immediately. Perhaps this new "known client (browser)/device" measure will limit the bots that troll for open inventory.

According to Disney at large it is something they started implementing on all their services in Fall of 2019. Some people were receiving the same e-mail for Disney+ in Fall of 2019 (that was incorrectly tied to phishing because of the hack that the Disney+ service had independent of this). Directly from Disney below you can see they talk about this measure starting in Fall of 2019, I just find it strange it seems to be just coming around to DVC.

https://support.disney.com/hc/en-us/articles/360034186092
Also I called and spoke to MS and they had no idea what it was (I assume that CM had no idea but I still think it is real) so sent me a link to reset my password, which funny enough was the same sender as the automated message and same format to the link. So again I still agree that this is legitimate.

 

[bwvBound]

It’s new and glitchy apparently. Same thing happened here. I logged in in Texas on safari and it said someone in NJ tried to log in using safari at the same time.

meh. I didn’t click that link but I DID go to Disney and change my password.

The location is likely dependent on your underlying internet connection and where it crosses over from your provider's infrastructure to the internet backbone. Are you on a major internet provider's network? If so, that might account for the rather wide disparity of locations. Your provider might also use a least-cost-routing system to shape the traffic to the least congested network locations. You might see all kinds of crazy locations appear in those message.

FWIW, my location is most often reported as Los Angeles ... I'm assuming my provider routes my actives through Mae West or similar?

 

[kristenrice]

Does this mean that every time I log in to my account, I will receive a notice from Disney that someone has logged in to my account? If so, how will I be able to distinguish a legitimate sign in from a potentially fraudulent sign in? I have been hacked before and I am very nervous and skeptical of every suspicious e-mail that I receive. I am not trying to assume that there is any nefarious intent behind these e-mails. I am just very concerned with the security of my online accounts, both with Disney and my e-mail address in general.

 

[Micca]

It’s new and glitchy

The hallmark of Disney IT

 

[Pooh12863]

So by “legit”, does this mean that the email is truly coming from Disney, in which case I need to be genuinely concerned that my account is being accessed by an a unauthorized party? Or does it mean that it is coming from Disney due to some sort of a glitch in their system?

By legit I mean that I was told by MS that it came from Disney.

 

[DisneynBison]

I also received it this AM and I called in and they had me forward my email to them. I was not concerned but it said I was in Texas and not in North Dakota so it made me go, What????? I figured it was just Disney IT being Disney IT but I changed my password after calling in and having them send me a link to change it. So now I need to change it in MDE and Disney + on all my devices.

 

[AdamsMum]

I just logged in and none of my information is there. I also didn't get the email. I'll try again later.

 

[JETSDAD]

Does this mean that every time I log in to my account, I will receive a notice from Disney that someone has logged in to my account? If so, how will I be able to distinguish a legitimate sign in from a potentially fraudulent sign in? I have been hacked before and I am very nervous and skeptical of every suspicious e-mail that I receive. I am not trying to assume that there is any nefarious intent behind these e-mails. I am just very concerned with the security of my online accounts, both with Disney and my e-mail address in general.

From what I have seen it's just when you login from a new device. If it just started now it's likely treating it as though you'd never logged in before so any device, even if you had previously used it, is getting that notice. I logged in on my cell last night and got one....I then logged on with my office laptop today and got one as well. Other logins today with the same laptop have not triggered the email. It's just like my Google account. When I log in with a new device I get a notice.

 

[kristenrice]

From what I have seen it's just when you login from a new device. If it just started now it's likely treating it as though you'd never logged in before so any device, even if you had previously used it, is getting that notice. I logged in on my cell last night and got one....I then logged on with my office laptop today and got one as well. Other logins today with the same laptop have not triggered the email. It's just like my Google account. When I log in with a new device I get a notice.

I am getting the email almost every time I log in. I have logged in three times today from my laptop...twice from Chrome (once while the device was "asleep") and once from Edge and I have gotten three e-mails. The only time I did not receive the e-mail was when I logged in from my laptop with my VPN turned on.

 

[MICKIMINI]

I received it overnight as well...something didn't look right to me. I deleted the email without clicking on it. I just logged in to my DVC account with no problem.

 

[AvidDisReader]

DVC new has a post that Disney IT updated the system to have the email sent every time someone logs in. This is to try and stop hackers.

 

[JETSDAD]

I am getting the email almost every time I log in. I have logged in three times today from my laptop...twice from Chrome (once while the device was "asleep") and once from Edge and I have gotten three e-mails. The only time I did not receive the e-mail was when I logged in from my laptop with my VPN turned on.

I think a different browser will trigger it as well. I have logged in multiple times from both of the devices I previously mentioned and received the email only on the first login. Just now I tried using a different browser with my laptop and that sent the email.

 

[bobbiwoz]

I have gotten this notice twice when I logged in.

 

[Dean Marino]

Deleted

 

[elgerber]

I got the same email twice yesterday, once from signing in on my desktop and once later after signing in from my phone. I am not concerned about it.

 

[kristenrice]

I'm no longer super-concerned about the e-mail being phony, but I guess now I am more interested in it's purpose. How exactly is this supposed to deter hacking? When I sign into my account, I really don't need to receive an e-mail telling me that I signed into my account. If this is going to alert me whenever *I* sign in from *my* devices, I am not clear on how this will counteract hacking. Also, I will add that I have not received the e-mail with any subsequent log-ins today. I received a total of 3 with the first 3 times I logged in today...all from the same device, on the same wi-fi, at the same location. I have logged out, closed my browser and logged back in several more times throughout the day and I have not received any additional e-mails. Which brings me back to my question of what is the purpose of the e-mail??

 

[JETSDAD]

I'm no longer super-concerned about the e-mail being phony, but I guess now I am more interested in it's purpose. How exactly is this supposed to deter hacking? When I sign into my account, I really don't need to receive an e-mail telling me that I signed into my account. If this is going to alert me whenever *I* sign in from *my* devices, I am not clear on how this will counteract hacking. Also, I will add that I have not received the e-mail with any subsequent log-ins today. I received a total of 3 with the first 3 times I logged in today...all from the same device, on the same wi-fi, at the same location. I have logged out, closed my browser and logged back in several more times throughout the day and I have not received any additional e-mails. Which brings me back to my question of what is the purpose of the e-mail??

My wife has had the same type of message regarding a different account. It alerted her that someone elsewhere had signed in to her account so she immediately logged on and changed her password. If it's you, just ignore it. If there's a login and it's not you then you know that something needs to be dealt with.

 

[tbay]

I also got the same e-mail and wasn't sure if I should change the password from the e-mail . Went to the dvc site to change the e-mail password but can't find where on the site you do it or do you have to call member services and have them do it .

 

[JETSDAD]

New notification:

 

[AdamsMum]

I just logged in and none of my information is there. I also didn't get the email. I'll try again later.

Update, got the email then checked my MDE account. Everything is back in place. The email just asking if I recognize this activity, if not then click on the box. Didn't click.