Skip to main content

Data Breach Exposes Millions of Loan Documents Online

Jan 23, 2019
More than 24 million financial and banking documents related to mortgages and other consumer loans were leaked online due to a server security lapse

More than 24 million financial and banking documents related to mortgages and other consumer loans were leaked online due to a server security lapse.
 
According to a report by TechCrunch, the server was running an Elasticsearch database and stored more than a decade of data from some of the nation’s largest banks. The data in question included confidential loan and mortgage contracts and sensitive personal information on borrowers.
 
The information was not password protected, thus opening it to wide exposure for at least two weeks before the server was shut down on January 15 after independent security researcher Bob Diachenko discovered the breach. The leak was traced back to Ascension, a Fort Worth, Texas-based data and analytics company serving the financial services industry, and the data belonged to Citigroup’s now-defunct CitiFinancial subsidiary, HSBC Life Insurance, Wells Fargo, CapitalOne and federal agencies including the Department of Housing and Urban Development.
 
Sandy Campbell, General Counsel at Ascension’s parent company Rocktop Partners, confirmed the breach.
 
“On Jan. 15, this vendor learned of a server configuration error that may have led to exposure of some mortgage-related documents,” he said in a statement. “The vendor immediately shut down the server in question, and we are working with third-party forensics experts to investigate the situation. We are also in regular contact with law enforcement investigators and technology partners as this investigation proceeds.”

 
About the author
Published
Jan 23, 2019
More from
Tech
Acrisure Welcomes Chief People Officer

Robin Benoit, who has served in an interim capacity since March 2024, takes on the role.

Sep 26, 2024
Simplist Technologies Officially Launches Sonar After Lengthy Beta Period

Sonar beta tested with over 200 lenders over the past year and a half.

Sep 25, 2024
ICE Expands Credit Dispute Processing For Mortgage Servicers

ICE Credit Bureau Management automates credit disputes, helping servicers meet 30-day reporting deadlines.

Sep 24, 2024
UWM Works To KEEP The Refis Rolling In

The wholesaler launches an AI-driven system, KEEP, that identifies borrowers in need of a refinance

Sep 11, 2024
Social Savvy

Brandon Treadway on maximizing mortgage marketing with social media

Sep 09, 2024
Ronald Chillemi Figure's First Chief Legal Officer

Fintech company appoints longtime business attorney, prosecutor

Sep 05, 2024