The Record ** disclosed that Fidelity National Financial (FNF), the largest title insurance company in the United States"fnf"The subsidiary reported a data breach to its state regulator, noting that 1316938 people's data was stolen by threat attackers who hacked its parent company.
On November 19, 2023, Loancare, which provides mortgage services or sub-services to users, realized that certain systems in the information technology network of its parent company, FNF, had been accessed without authorization, and subsequently organized cybersecurity experts to conduct a detailed investigation, which ultimately revealed that a large number of users' names, addresses, social security numbers, and loan numbers may have been stolen by unauthorized third parties. (In 2009, Fidelity National Financial successfully acquired Loancare for $16.3 million**).
After being notified of the data breach security incident, the FNF hired a third-party cybersecurity expert to begin investigating the matter and simultaneously reporting the attack to law enforcement and agencies. In addition, the company has been emphasizing that it can confirm that the incident has been contained, but in order to prevent hackers from leaking the stolen data, affected users can receive a two-year identity protection service from Kroll.
Fidelity National Financial owns dozens of regional title companies, such as the New York National Title Corporation, Chicago Title Corporation, Alamo Title Corporation, and Federal Land Title Corporation. It is worth mentioning that after the data breach, the Alphv Blackcat ransomware gang claimed that the attack on Fidelity National Finance prevented hundreds of people across the United States from buying homes last month, and in the days after the attack, real estate agents, home buyers, etc. were in trouble because the sale of their homes could not be completed.
In the aftermath of the data breach, the FBI and other law enforcement agencies uncovered a leak from the Alphv Blackcat ransomware gang** in a single enforcement operation and gained access to more than 900 public and private key pairs in the Alphv Blackcat ransomware gang's dark web** infrastructure. According to the Cybersecurity and Infrastructure Security Agency (CISA), as of September 2023, the Alphv Blackcat ransomware gang is affiliated"More than 1,000 entities have been compromised, nearly 75% of which are within the United States and about 250 outside the United States, demanding more than $500 million in ransoms and receiving nearly $300 million in ransoms"。