Fidelity National Financial impacted by cyber attack, exposes 1.3M, shuts down systems

Fidelity National Financial (FNF), a Fortune 500 company in the insurance to the mortgage and real estate sectors, disclosed a significant cybersecurity breach. The breach involved unauthorized system access and the extraction of sensitive credentials by an unnamed external party.

FNF's subsequent response included an array of containment strategies, with a decision to restrict access or shut down certain systems—a move that caused notable disruptions to the company's business operations.

FNF is actively investigating the breach's scope and implications with top-tier cybersecurity professionals and has informed law enforcement of the incident. The primary aim of these actions is to fully determine and mitigate the breach's impact on the company's infrastructure and client data and to gauge any potential material consequences to the company's interests.

So far no details are available about the nature of the attack or it's impact.

The incident has affected FNF's title insurance and related settlement services, including escrow and mortgage transactions. The company's commitment to resolving the issue involves restoring normal operations as safely and promptly as possible while continuing to unravel the extent and ramifications of the breach.

Update - The ransomware group ALPHV/BlackCat, claimed responsibility for a cyberattack on 22nd of November 22, after criticizing incident response firm Mandiant for inaction, stated they would give the targeted company more time to respond before releasing further details of the data they accessed.

In late December 2023 mortgage subservicer Loancare, part of Fidelity National Financial (FNF), reported that the  cyberattack in November has compromised the data of about 1.3 million customers, including social security numbers.

FNF has arranged for 24 months of free identity monitoring services through Kroll for affected customers.