Mortgage lending firm loanDepot reported a significant breach in which the personal information of nearly 17 million customers was compromised during a ransomware attack in January.
The group behind the attack, identified as ALPHV/Blackcat ransomware gang, has asserted responsibility for the breach. This cyber intrusion led to the exposure of sensitive customer data including social security numbers, names, dates of birth, email and postal addresses, financial account details, and phone numbers.
Consequently, millions of affected customers faced disruptions in accessing their online accounts and conducting financial transactions for an extended period.
ALPHV has issued threats to auction off the pilfered data unless loanDepot meets their ransom demands. However, the company has not disclosed whether it intends to comply with these demands.
This incident adds to the growing trend of ransomware attacks targeting various industries. Notable victims in recent months include Fidelity National Financial, the US branch of Industrial and Commercial Bank of China, and EquiLend, a securities lending trading platform.