Keyboard robbers steal 171K customers' data from AnnieMac mortgage house
- Reference: 1731698529
- News link: https://www.theregister.co.uk/2024/11/15/anniemac_data_breach/
- Source link:
American Neighborhood Mortgage Acceptance Company, which trades as AnnieMac Home Mortgage, said between August 21 and 23, an unknown intruder "viewed and/or copied" some customer data.
The affected data types include names and social security numbers (SSNs), and as ever with these kinds of disclosures, AnnieMac said it currently had "no evidence" to suggest that data has been abused on the [1]dark web (which only means no one has found copies of it there) or otherwise.
[2]
"The confidentiality, privacy, and security of personal information within our care are among AnnieMac's highest priorities," letters to affected customers read. "Upon becoming aware of this event, we promptly commenced an investigation and response that included confirming the security of our systems, investigating to determine the information that may be impacted, and reviewing the contents of relevant data for sensitive information.
[3]
[4]
"As part of our ongoing commitment to the privacy of information in our care, we have implemented additional security measures to further protect against similar incidents occurring in the future. We also reported this event to applicable state and federal government regulators."
Affected individuals were offered the usual 12 months of credit monitoring and identity theft protection from a credit monitoring company – CyEx, in this case.
[5]
The New Jersey-based mortgage lender operates across the US and offers conventional mortgage products as well as more niche offerings that appeal to home buyers with specific circumstances, such as lower incomes or less favorable credit ratings.
For example, its OneUP program is available for those who earn less than the median income in their area.
It allows buyers to secure a home with just a 1 percent down payment, while AnnieMac provides additional non-repayable funds, such as 2 percent of the property's value or up to $2,000, to help buyers get on the property ladder.
[6]
The lender also offers government-backed Federal Housing Administration (FHA) loans to those with credit scores of 550. Typically, the FHA loan program allows those with 580 scores to access credit as long as they put a 3.5 percent deposit down.
Industry reviewers [7]say the program also technically accepts those with 550 scores if they can put down a 10 percent deposit, but many lenders turn these applicants away regardless. AnnieMac, however, holds firm and offers credit under the same conditions.
It also has various other schemes designed to ease the financial burden for buyers and sellers, such as temporary interest rate easing or accessing a home's equity built over time.
[8]Data broker amasses 100M+ records on people – then someone snatches, sells it
[9]Amazon confirms employee data exposed in leak linked to MOVEit vulnerability
[10]Lender threatens to sweep MariaDB accounts over private equity bid
[11]Mr Cooper cyberattack laid bare: 14.7M people's info stolen, costs hit $25M
Regarding the breach, the affected data types only include names and SSNs, which, in the wider context of [12]data leaks , is concerning but not as extensive as it could have been. Less than a year ago, Mr. Cooper, another US mortgage lender, disclosed a more significant attack affecting [13]14.7 million of its customers .
The compromised data in that case included addresses, phone numbers, dates of birth, and bank account numbers, alongside names and SSNs, making it more severe in scope than AnnieMac's leak.
Nonetheless, the exposure of SSNs still poses a risk, as miscreants could exploit this information to take out credit, potentially damaging the scores of customers with already middling credit. The incident raises questions about how individuals considered to be more financially unstable than others may fare in the longer term. ®
Get our [14]Tech Resources
[1] https://www.theregister.com/2024/10/10/cannabia_bohemia_darkweb_market_investigation/
[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2ZzfSiyqfLBQIO550D_9BaQAAARE&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZzfSiyqfLBQIO550D_9BaQAAARE&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZzfSiyqfLBQIO550D_9BaQAAARE&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[5] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZzfSiyqfLBQIO550D_9BaQAAARE&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[6] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZzfSiyqfLBQIO550D_9BaQAAARE&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[7] https://www.fool.com/money/mortgages/anniemac-home-mortgage-review/
[8] https://www.theregister.com/2024/11/13/demandscience_data/
[9] https://www.theregister.com/2024/11/12/amazon_moveit_breach/
[10] https://www.theregister.com/2024/02/23/lender_threatens_to_sweep_mariadb/
[11] https://www.theregister.com/2023/12/18/mr_cooper_breach_disclosure/
[12] https://www.theregister.com/2024/11/14/smartrite_breach/
[13] https://www.theregister.com/2023/12/18/mr_cooper_breach_disclosure/
[14] https://whitepapers.theregister.com/
"among"
Do they get points for honesty?
"... among AnnieMac's highest priorities..." (emphasis mine)
intruder's motive?
I wonder if:
The intruder just stumbled on an open door and was curious
The intruder only wanted data, to demand a ransom not to release it (no evidence of ransom demand)
The intruder only wanted data, for a scheme they have planned
The intruder's ransomware app failed to start
The network had security software that stopped the ransomware from executing (org would have bragged about this)
If it was planned, you would expect some ransomware as well. Is there anyone left in the US whose SSN hasn't been misplaced?
Re: intruder's motive?
Nope.
I just assume every single citizen at this point has had their entire life’s data listed in a file on the “dark web”.
We have had in the last, what, 2 years. Had major mobile carriers’ customer data leaked, multiple mortgage companies, multiple banks, and a couple of cities.
And every single time we hear the same BS “we take data protection seriously”. If a company meant that, it would’ve never happened. Especially when over half of these breaches come from IT complacency. Either someone had a shitty password or an unpatched vulnerability or some other dumb shit.
Only to get the same 12 months of credit monitoring from an unheard of company. The government then barely slaps them in the wrist. Which I assume they’ve been hacked and refuse to admit it as well.
Since when did a radio DJ sell mortgages?