Some of the lender and servicer's systems are offline following the attack on Oct. 31.

The order follows a similar decree by the Securities and Exchange Commission for publicly traded firms to disclose incidents they deem "material."

The types of attacks ranged from malware, phishing and a zero-day hack of a vendor software which has rattled numerous bank and non-bank lenders.

The bank suffered its third breach in three years, this time by virtue of a vulnerability in Progress Software's file-transfer system. But Flagstar is only one of many such victims.

The FBI, NSA and CISA highlighted the emerging dangers of AI-powered deepfakes in phishing campaigns and cataloged protections companies can deploy.

Panelists from the Secret Service at a Mortgage Bankers Association conference Monday urged mortgage lenders to tweak their approach to reporting of wire fraud, home equity theft, investment scams and elderly-related financial crimes, which are on the rise.

The customers were affected by an incident involving a Progress Software program used by Sovos Compliance.

Ransomware attacks are an increasingly significant threat to the home finance industry.

Companies that don't use the technology on average pay $1.76 million more and take 108 days longer to respond to incidents than firms that utilize it.

The incident occurred in November 2020 when an unauthorized party gained access to company systems and deployed ransomware, resulting in compromise of employees' personal information.

The implementation plan the Biden administration released on Thursday seeks to shift liability for data breaches onto "the biggest, most capable" entities. Does that mean banks?

Ransomware gang Cl0p is currently threatening 50 companies with releasing data it stole from them late last month.

Carrington Mortgage Services and its vendor also face three new federal lawsuits, which claim the number of customers impacted in their incidents exceeds 3 million clients.

The government-sponsored enterprise plans to further decentralize security services, which will enable risk management across the business, said Chita Elango, senior director of application security.

The New York State Department of Financial Services found the company failed to adequately protect itself from data breaches. Since 2018, OneMain has suffered multiple cybersecurity incidents.

The hackers, on their dark web blog, recently threatened to release supposed company and borrower information if the lender did not pay.

The incident affecting the information of 1,361 customers is a rare disclosure of a data breach from a top mortgage lender and servicer.

The servicer didn't disclose how many customers were affected by the incident.

Financial services firms are focusing on essential risk-related priorities, but must not lose sight of the importance of innovative technologies that drive business forward.

The case involved incidents occurring in early 2021, when an unauthorized individual obtained access to files containing personal identifiable information of consumers.