January 10, 2024 at 03:46PM
Fidelity National Financial confirmed a cyberattack by the BlackCat ransomware gang on November 19, 2023, affecting 1.3 million customers. The attack prompted containment measures and data exfiltration from breached systems. FNF is providing affected customers with credit monitoring and identity theft services and is prepared to defend against potential lawsuits. Similar attacks have targeted the mortgage and housing industry.
Summary of Meeting Notes:
Fidelity National Financial (FNF), a major American title insurance and transaction services provider, experienced a cyberattack in November 2023, resulting in the exposure of data from 1.3 million customers. The attack was attributed to the BlackCat ransomware gang. The incident was successfully contained seven days later, and FNF took certain IT systems offline as a containment measure.
The company confirmed in an amended SEC Form 8-K filing that the attackers used a non-propagating malware to exfiltrate data from breached systems. The investigation concluded on December 13, 2023, revealing the extent of the data breach. FNF has taken steps to notify affected customers, state attorneys general, and regulators, and is providing credit monitoring, web monitoring, and identity theft restoration services.
FNF clarified that the breach was contained on its systems and did not extend to any connected customer-owned systems. The company believes the incident will not have a material impact on its financial status and operations and has committed to vigorously defending itself against class action lawsuits resulting from the breach.
The BlackCat ransomware gang previously claimed responsibility for the attack and listed FNF on their data leak site. While they did not confirm whether data was stolen, they stated they were waiting for FNF to contact them first. This breach is part of a series of recent cyberattacks targeting the mortgage and housing industry.