Skip to main content

Data Breach Exposes Millions of Loan Documents Online

Jan 23, 2019
More than 24 million financial and banking documents related to mortgages and other consumer loans were leaked online due to a server security lapse

More than 24 million financial and banking documents related to mortgages and other consumer loans were leaked online due to a server security lapse.
 
According to a report by TechCrunch, the server was running an Elasticsearch database and stored more than a decade of data from some of the nation’s largest banks. The data in question included confidential loan and mortgage contracts and sensitive personal information on borrowers.
 
The information was not password protected, thus opening it to wide exposure for at least two weeks before the server was shut down on January 15 after independent security researcher Bob Diachenko discovered the breach. The leak was traced back to Ascension, a Fort Worth, Texas-based data and analytics company serving the financial services industry, and the data belonged to Citigroup’s now-defunct CitiFinancial subsidiary, HSBC Life Insurance, Wells Fargo, CapitalOne and federal agencies including the Department of Housing and Urban Development.
 
Sandy Campbell, General Counsel at Ascension’s parent company Rocktop Partners, confirmed the breach.
 
“On Jan. 15, this vendor learned of a server configuration error that may have led to exposure of some mortgage-related documents,” he said in a statement. “The vendor immediately shut down the server in question, and we are working with third-party forensics experts to investigate the situation. We are also in regular contact with law enforcement investigators and technology partners as this investigation proceeds.”

 
About the author
Published
Jan 23, 2019
More from
Tech
AI And The Mortgage Revolution

Chris Burks, Head Of Growth at Zeitro, on embracing change

Jun 26, 2025
Fed Chairman Aligns More Closely With Trump Admin On Crypto

Powell said he sees ‘change in tone’ around digital assets, expects more crypto activity

Jun 26, 2025
FHFA Chief Orders Fannie And Freddie To Prepare For Crypto In Mortgage Underwriting

In sweeping declaration on social media, FHFA Director William J. Pulte says Fannie Mae and Freddie Mac must begin preparing to count cryptocurrency as an asset in mortgage underwriting

Beware The Latest ‘Long Con’ Scam

Real estate professionals of all kinds warned to beware of crypto scams exploiting ‘trust relationships’ with clients

Jun 23, 2025
ServiceLink Adds Three To Its National Sales Team In Origination Division

Chris Miller, James Lee, and Mandy Powell to help forge new lender partnerships, drive client growth

Jun 23, 2025
“Technology” is a Catch-All Word

Tech promises efficiency, but adoption, ROI, and borrower satisfaction tell a more complex story

Jun 19, 2025