Around 1.3 million Fidelity National Financial (FNF) customers had their data stolen by the hackers responsible for a cyberattack that paralyzed the company last November.
The firm, which provides title insurance and real estate services across North America, confirmed the data leak in its latest SEC filing, stating that “an unauthorized third-party accessed certain FNF systems, deployed a type of malware that is not self-propagating, and exfiltrated certain data.”
It added that affected customers have been informed of the leak, as well as “applicable state attorneys general and regulators.”
The cyberattack that hit FNF in late November caused week-long service disruptions. It also brought down the company’s website and left certain systems inaccessible.
A ransomware gang known as ALPHV/BlackCat previously claimed responsibility for the attack on its dark web leak site. Cybercriminals typically use such websites to extort victims into paying for the removal and deletion of compromised data, according to TechCrunch.
FNF’s SEC filing did not specify the nature of the data that was compromised in the leak. However, it did confirm that affected customers would be provided with credit monitoring, web monitoring, and identity theft restoration services.
“The company is continuing to coordinate with law enforcement, its customers, regulators, advisors and other stakeholders,” FNF added.
Several other financial services organizations have been hit by cyberattacks in recent months.
In late December, First American Financial chose to go offline after it identified “unauthorized activity” on some of its IT systems. The company has since assured customers that funds at First American Trust and third-party partner banks are secure.
What are your thoughts on this story? Feel free to share your comments below.