November 23, 2023 at 01:02PM
Fidelity National Financial (FNF), a Fortune 500 insurance company, has experienced a cybersecurity incident that has forced the shutdown of several systems. The incident has affected services related to title insurance, escrow, and mortgage transactions. FNF is currently assessing the impact of the incident and working to restore normal operations. The company has not disclosed the material impact on trade. A ransomware group called ALPHV/BlackCat has claimed responsibility for the attack. Security experts believe the attack may have been facilitated by an exploit of a vulnerability in Citrix Netscaler devices.
Summary:
Fidelity National Financial (FNF), a Fortune 500 insurance company, has experienced a cybersecurity incident, as confirmed in an 8-K filing with the SEC. As a result, FNF has shut down certain systems, affecting services related to title insurance, escrow, mortgage transactions, and technology for the real estate and mortgage industries. The company has recorded over $11 billion in total revenue for 2022, making it one of the largest underwriters of title insurance and providers of transaction services in the US. FNF has reported that an intruder accessed their systems and acquired certain credentials. Investigations are ongoing, and the material impact on the company’s operations is yet to be disclosed. Ransomware outfit ALPHV/BlackCat has claimed responsibility for the attack but has provided limited details. FNF is working diligently to address the incident and restore normal operations. Some companies and home buyers may experience delays in closing purchases due to the disruption. Security experts speculate that the vulnerability exploited could be related to Citrix Netscaler devices and the “CitrixBleed” vulnerability. The patch for this vulnerability was applied two weeks after its availability, potentially allowing ransomware groups to exploit it extensively.