Alert Update: Title Company Data Allegedly Exposed in Phishing Attack

July 8, 2019

Hopefully by now you’ve seen our alert on July 3 about the potential exposure of roughly 600 title agent credentials purportedly obtained through a phishing campaign. We wanted to share a little more information with you from our analysis.

It’s important to note that this was not a breach of ALTA's systems. The data was sent to ALTA by an outside source and the association felt it had a duty to inform and protect industry professionals as much as possible.

The information sent to ALTA offers no indication of (1) how the credentials were obtained, (2) whether the credentials are current or active and (3) if the credentials provide access to any individual company networks, software applications, online email systems, or other credential-based products or services.

Our analysis found:

  • 182 unique email addresses (note that some email addresses are listed more than once with different associated passwords).
  • 154 unique domains (note that some domains were listed more than once with different associated email addresses).

ALTA is reaching out to company's if their domain was found in the data.

In the meantime, it's important to watch for unauthorized access to your system. If you suspect that any contact information was obtained or your system was accessed, alert your IT department or engage an IT specialist to implement your information security program and response plan. Some steps you can take to protect your system include:

  • scanning your systems and devices to make sure that you are free from malware
  • update or patch your software and operating systems
  • require your staff to update and change system passwords, especially those containing customer information and banking services

ALTA also suggests reporting any suspicious emails to the Federal Bureau of Investigation Internet Crime Complaint Center at www.ic3.gov. If you have additional information about this incident or similar attacks, please contact ALTA’s IT staff at vulnerabilities@americanlandtitleassociation.org.


Contact ALTA at 202-296-3671 or communications@alta.org.

130926