Fidelity National Financial, a major real estate services company, fell victim to a cyberattack in November, resulting in the theft of data belonging to 1.3 million customers.
Fidelity National Financial, a major real estate services company, confirmed that hackers stole data on 1.3 million customers during a November cyberattack, causing a week-long outage. An unauthorized third party accessed certain Fidelity National Financial systems, deployed non-self-propagating malware, and exfiltrated data. While the filing with federal regulators did not specify the stolen customer data, the company is offering credit monitoring and identity theft services to affected customers, indicating the potentially sensitive nature of the information.
Fidelity National Financial contained the cyberattack on November 26, following a week-long outage that severely disrupted company and subsidiary operations. Customers faced challenges in making mortgage payments, and one subsidiary referred to the incident as a “catastrophe” in messages to customers. Despite the operational disruptions, the company promptly notified affected customers, state attorneys general, and regulators.
The cybercriminal group ALPHV (or BlackCat) claimed responsibility for the attack on Fidelity National Financial in a post on its dark web leak site, commonly used for extorting victims to pay hackers to remove and delete stolen data. FNF was part of a broader wave of cyberattacks targeting the mortgage and loan industry in recent weeks, alongside other victims like LoanDepot and Mr. Cooper.