Data security

After gaining access to On Q systems via vendor software, unknown parties were able to obtain and remove client personal information, including Social Security numbers.

The report seeks to help banks "disrupt rapidly evolving AI-driven fraud," according to Treasury's Nellie Liang. The report found banks have difficulties accounting for AI risks.

Some vendors can act as backups when a cyberattack knocks the regular provider's system offline. Others offer vendor management expertise that may help.

Keeping vendor arrangements under wraps, "pen-tests" and a few simple email setting changes can make a world of difference in avoiding future attacks, experts say.

Malicious actors could be utilizing the same software that cybersecurity experts use to test a company's systems for vulnerabilities.

An unnamed hacker in December "potentially removed" sensitive consumer data including Social Security numbers from the wholesale lender.

The attack is one of three major incidents the lender has suffered in the past three years.

The government mortgage-backed securities guarantor needs data breaches reported within a certain period of time and has specific instructions for subservicers.

The root cause of the hack affecting over 5 million customers was an employee clicking on a link in a work-related search result, according to public case documents.

The mortgage lender said the hack was caused by a third-party's vulnerability.

The lender had previously revealed that personally identifying information from 16.6M customers had leaked, but hadn't offered these details.

The notorious group also allegedly targeted Academy Mortgage and Fidelity National.

Litigation in the mortgage industry sees lenders and servicers featuring as both plaintiffs and defendants.

The New York-based firm said a hack last August compromised the personal identifiable information of 10,835 customers.

Both lenders disclosed their systems were accessed and customer data was leaked.

The ransomware attack compromised the personally identifiable information of over 199,000 mortgage customers.

A little over 280,000 customers had their birth dates and Social Security numbers compromised during the cyber attack.

The rate of errors per loan jumped by 30% compared to the third quarter, a FundingShield report said.

16.6 million former and current Loandepot customers had their data leaked, the lender and servicer announced Monday.

Mellohome's website, the MyLoandepot customer portal and the HELOC portal have been rebooted following the cyber attack, the lender and servicer said.