Spring EQ reports data breach caused by compromised employee email

Spring EQ, a Philadelphia-based mortgage lender, reports a data breach resulting from unauthorized access to an employee's email account.

Spring EQ is a nationwide mortgage lender founded in 2016, specializing in various loan options including fixed-rate HELOCs, variable-rate HELOCs, and home equity lines.

The unauthorized access occurred between July 31, 2024, and August 1, 2024. The breach occurred through unauthorized access to an employee's email account, which contained confidential consumer information in emails and attachments.

Spring EQ secured the compromised employee email account upon discovery, initiated an investigation into the incident  and conducted a review of compromised files to identify affected individuals.

The specific types of exposed data have not been publicly disclosed. The number of affected individuals and the financial impact of the incident remain undisclosed at this time.

Spring EQ began sending personalized notification letters to affected individuals on November 21, 2024