Nations Direct Mortgage alerts 83,000 people about personal data leaks following December cyberattack


Nevada-based Nations Direct Mortgage said more than 83,000 customers were affected by a data breach in late 2023 that resulted in a leak of Social Security numbers and other sensitive information.

In the files filed with regulators in Maine And California, the company said it discovered a cybersecurity incident on Dec. 30 that led to an investigation. Law enforcement and other government agencies have been notified of the cyberattack.

The lender operates in 35 states and has originated hundreds of millions of dollars in mortgage loans since its founding in 2007.

“The investigation determined that an unauthorized third party gained access and potentially deleted the data of certain individuals across the country,” the company said in letters to victims.

“Based on our investigation, we understand that your Nations Direct name, address, social security number, and unique loan number may have been obtained by an unauthorized malicious third party. »

Victims will receive two years of identity protection services from Kroll. The company job a copy of the letter on its website as well.

Several law firms are seeking victims for a possible class action lawsuit against Nations Direct Mortgage for violations.

The incident occurred as several mortgage lenders and financial giants in the real estate industry were facing ransomware attacks and other cybersecurity issues.

One of the largest mortgage servicers, Mr. Cooper, spent months in late 2023 troubleshooting before announcing that the information of nearly 14.7 million people was leaked in a ransomware attack.

Fidelity National Financial – a Fortune 500 provider of title insurance for property sales – has been hit by ransomware in Novembersnarling home purchases across the United States for days.

First American Title Insurance Company and another large retail mortgage lender LoanDepot announced attacks in December and January that caused many problems for home buyers.

Several other critical financial services institutions like MeridianLink, Tipalti And Moneris incidents were reported throughout the fall. One of the world’s largest banks, Industrial and Commercial Bank of China (ICBC), also announced a ransomware attack in November.

Get more information with the

Future saved

Intelligence cloud.

Learn more.

Leave a comment