Mellohome's website, the MyLoandepot customer portal and the HELOC portal have been rebooted following the cyber attack, the lender and servicer said.

The lender didn't reveal whether the incident was related to a purported ransomware gang attack last March.

In a new filing with the Securities and Exchange Commission, the company attributed delayed transactions, loss of business to other providers and one-time expenses to reduced revenue but expected a limited effect on financial health.

Most of the legal filings accuse the title insurer and its subsidiary, LoanCare, of failing to protect the personal identifiable information of customers.

The lender had taken certain systems offline and was working to restore business operations as of Monday morning.

The company's latest filing provided a brief timeline of the incident that was uncovered on Dec. 20.

The title insurer said its title data and property records research tools have been restored, as well as its warranty site.

In a filing, the company's subservicing subsidiary Loancare said 1.3 million customers had their data compromised, while in an ongoing situation, customers of fellow title insurer First American find themselves without email or online access after a separate incident last week.

The title company was also attacked in 2019 and joins Fidelity National and Mr. Cooper among recent victims.

Both past and present customers were impacted by the data breach.