Security News > 2024 > January > US mortgage lender loanDepot confirms ransomware attack
Leading U.S. mortgage lender loanDepot confirmed today that a cyber incident disclosed over the weekend was a ransomware attack that led to data encryption.
LoanDepot is a major nonbank mortgage lender in the United States, with over $140 billion in serviced loans and roughly 6,000 employees.
As the loanDepot revealed today in an 8-K filing with the U.S. Securities and Exchange Commission, the attackers also encrypted files on compromised devices, but it's unclear which ransomware group was behind the attack.
While loanDepot only mentions that the threat actors gained access to systems and encrypted files, ransomware gangs now also commonly steal corporate and customer data during breaches to use as leverage when pressuring victims into paying a ransom.
In May 2023, loanDepot disclosed a data breach resulting from a cyberattack in August 2022 that exposed customer data.
Mortgage firm loanDepot cyberattack impacts IT systems, payment portal.
News URL
Related news
- US offers $10M for tips on DPRK hacker linked to Maui ransomware attacks (source)
- Iran Cyber Attack: Fox Kitten Facilitates Ransomware in US (source)
- Russians plead guilty to involvement in LockBit ransomware attacks (source)
- Two Russian Nationals Plead Guilty in LockBit Ransomware Attacks (source)
- Los Angeles Superior Court shuts down after ransomware attack (source)
- LA County Superior Court closes doors to reboot justice after ransomware attack (source)
- North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks (source)
- North Korean chap charged for attacks on US hospitals, military, NASA – and even China (source)
- U.S. DoJ Indicts North Korean Hacker for Ransomware Attacks on Hospitals (source)
- Microsoft: Ransomware gangs exploit VMware ESXi auth bypass in attacks (source)