Some of the lender and servicer's systems are offline following the attack on Oct. 31.

The order follows a similar decree by the Securities and Exchange Commission for publicly traded firms to disclose incidents they deem "material."

The types of attacks ranged from malware, phishing and a zero-day hack of a vendor software which has rattled numerous bank and non-bank lenders.

The bank suffered its third breach in three years, this time by virtue of a vulnerability in Progress Software's file-transfer system. But Flagstar is only one of many such victims.

The FBI, NSA and CISA highlighted the emerging dangers of AI-powered deepfakes in phishing campaigns and cataloged protections companies can deploy.

Panelists from the Secret Service at a Mortgage Bankers Association conference Monday urged mortgage lenders to tweak their approach to reporting of wire fraud, home equity theft, investment scams and elderly-related financial crimes, which are on the rise.

The customers were affected by an incident involving a Progress Software program used by Sovos Compliance.

Ransomware attacks are an increasingly significant threat to the home finance industry.

Companies that don't use the technology on average pay $1.76 million more and take 108 days longer to respond to incidents than firms that utilize it.

The incident occurred in November 2020 when an unauthorized party gained access to company systems and deployed ransomware, resulting in compromise of employees' personal information.