Skip to main content

1.3 Million LoanCare Customers Have Personal, Financial Data Exposed

Jan 02, 2024
The Federal Deposit Insurance Corporation (FDIC) was the source of 10 of the 16 major information security incidents that occurred within the federal government during Fiscal Year 2016
Staff Writer

Breach revealed in filing with Maine Attorney General a month after November 19 cyberattack.

The November 19 cyberattack that temporarily took down Fidelity National Financial’s online systems exposed the personal and financial data of 1.3 million customers of LoanCare, LLC, a mortgage subservicer owned by Fidelity National Financial, the real estate and mortgage industries’ largest underwriter of title insurance.

The breach of LoanCare, specifically, was not publicly known until December 20, when LoanCare filed a notice of data breach with the Attorney General of Maine. The filing indicates the data breach occurred on November 19, but was not discovered until December 13. 

However, letters being distributed to impacted customers by LoanCare state: “On or about November 19, 2023, LoanCare, LLC (“LoanCare”), which performs or has performed loan subservicing functions for your mortgage loan servicer, became aware of unauthorized access to certain systems within its parent’s, Fidelity National Financial, Inc. (“FNF”), information technology network. Upon becoming aware of the incident, FNF commenced an investigation with the assistance of third-party experts, notified certain law enforcement and governmental authorities, and began taking measures to assess and contain the incident.”

The SEC’s new rules for public companies’ cybersecurity disclosures, effective as of Sept. 5, 2023, includes “a requirement to disclose material cybersecurity incidents four business days after a public company determines the incident is material and a requirement to disclose annually information regarding cybersecurity risk management, strategy, and governance,” per the SEC’s website.

The only LoanCare customers receiving letters are those whose personal information was compromised.
 

About the author
Staff Writer
Ryan Kingsley is a staff writer at NMP.
Published
Jan 02, 2024
More from
Operations
Is Havoc For Home Insurance, Mortgage Rates Ahead?

Table stakes are rising for mortgage lenders ahead of 2025, as policy pivots loom and sales forecasts are adjusted

Nov 21, 2024
New Calendar, Or Dictionary, Needed For AnnieMac

Half-a-dozen class-action law firms have launched investigations into AnnieMac's "proactive" handling of a late-August data breach.

Consumer Watchdog Invites State Regulators To Dance

As regulatory roll-backs loom over financial sectors, the CFPB says consumers' financial data rights are states' to forfeit

Despite Losses, Rocket's Origination Volume Jumps 28% In Q3

Rocket generated $29.8 billion in net rate lock volume during Q3, a 43% increase over last year

Nov 12, 2024
Insurance Crisis Hits Lenders' Bottom Lines

While monthly principal, interest, and property tax obligations are up an average 15-17% since the beginning of 2020, the average monthly property insurance payment is up a staggering 52% over that same period.

Oct 30, 2024
Credit Score Switch Proving Difficult Absent Agency Guidance

Panelists at MBA's annual event agree GSEs have neglected to facilitate mandatory adoption of new credit scoring models, set to take effect in the fourth quarter of 2025.

Oct 29, 2024