CYBERNEWSMEDIA Network:||
CYBERNEWSMEDIA
CYBERNEWSMEDIA

Cybersecurity News, Insights & Analysis

Latest
TrueConf Zero-Day Exploited in Asian Government Attacks
In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware
Critical ShareFile Flaws Lead to Unauthenticated RCE
Mobile Attack Surface Expands as Enterprises Lose Control
React2Shell Exploited in Large-Scale Credential Harvesting Campaign
AD · 970×250

Data Breaches·Ransomware

Personal Information of 44,000 Compromised in First American Cyberattack

First American will notify 44,000 individuals that their personal information may have been stolen in a December 2023 ransomware attack. The post Personal Information of 44,000 Compromised in First American Cyberattack appeared first on SecurityWeek.

First American Financial Corporation this week revealed that the personal information of 44,000 individuals may have been compromised in a December 2023 cyberattack.

The financial services firm initially disclosed the incident on December 21, when it announced that it had taken certain systems offline as a containment measure, after identifying unauthorized activity on its network.

The next day, First American announced that it had taken its email systems offline as well, and cautioned that First American Title and FirstAm.com subsidiaries were also impacted.

One week later, the financial services firm said that it had started bringing some of its systems online, but full restoration was only announced on January 8, 2024.

On December 29, First American informed the Securities and Exchange Commission (SEC) of a data breach resulting from the incident and also revealed that data on certain non-production systems had been encrypted.

In a May 28 filing with the SEC, the financial services company revealed that 44,000 individuals were potentially impacted by the incident, without sharing specific details on the type of personal information that might have been compromised.

“The company will provide appropriate notifications to potentially affected individuals and offer those individuals credit monitoring and identity protection services at no cost to them,” First American said.

The company has not shared information on the ransomware gang behind the attack either, nor has it revealed whether a ransom was paid out.

Responding to a SecurityWeek inquiry, First American refrained from sharing additional details on the attack.

“First American’s investigation into its December 2023 cybersecurity incident conducted with leading external cybersecurity experts found that an unauthorized party may have accessed certain personal information,” the company said.

“First American takes this incident and the security of information in our care seriously and has further strengthened its already-robust network security,” First American added.

*Updated with statement from First American.

Related: Christie’s Confirms Data Breach After Ransomware Group Claims Attack

Related: 2.8 Million Impacted by Data Breach at Prescription Services Firm Sav-Rx

Related: 400,000 Impacted by CentroMed Data Breach

Latest News

CYBERNEWSMEDIAPublisher