LoanDepot hit by cyberattack, shuts down IT systems

LoanDepot, a U.S. nonbank retail mortgage lender, has fallen victim to a cyberattack, leading to the temporary shutdown of its IT systems. The incident disrupted the company's online payment capabilities and customer service operations, causing inconvenience to customers.

In response to this cyber incident, loanDepot has taken certain systems offline and is working with law enforcement and forensics experts to investigate the breach. The specific nature of the attack remains undisclosed, but it is suspected to be a form of ransomware. No details are disclosed about a possible data breach or impacted individuals.

Update - as of 21st of January 2024, LoanDepot reports that sensitive personal information of 16.6 million customers was stolen during the ransomware attack earlier this month.

On 16th of February 2024, ALPHV/Blackcat ransomware gang has claimed responsibility for the attack.

Another mortgage lending giant, Mr. Cooper, experienced a similar cyberattack in November 2023, which led to the exposure of personal information of approximately 14.7 million customers.

Given loanDepot’s role in handling confidential financial and bank account information, customers are advised to remain vigilant against potential phishing attempts and identity theft.