McLean Mortgage discloses data breach exposing customers’ personal information

American mortgage lender McLean Mortgage Corporation said a data security incident it suffered last year compromised the sensitive personal information of its customers.

 

Headquartered in Fairfax, Virginia, McLean Mortgage Corporation is a financial services company specialising in real estate mortgage services. It offers guidance and support throughout the home buying process, including pre-approval, loan options, and resources for both new construction and existing homes.

 

In a data security incident notice filed with the Office of Maine Attorney General, McLean said that on October 17, it identified suspicious activity within its internal network. The company immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

“The investigation revealed that certain files within our network may have been downloaded without authorisation.

 

“On May 12, 2025, McLean learned that some of your personal information may have been affected by a data security incident,” the mortgage provider said.

 

The compromised data included names, Social Security numbers, driver’s license numbers, and financial account numbers. The filing with the Maine state regulator also states that at least 30,453 individuals were impacted by the incident.

 

“Upon discovering the event, McLean moved quickly to investigate and respond to the incident, assess the security of its network, and identify potentially affected individuals. Further, McLean notified federal law enforcement regarding the event,” McLean added.

 

The company has advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and the state attorney general.

 

It has also offered one year of complimentary identity protection and credit monitoring services through IDX to all affected individuals.

 

 

In November, the BlackBasta ransomware group claimed responsibility for the cyber attack on McLean and listed it as a victim on its data leak site. The group claimed to have exfiltrated confidential data from the company and threatened to release it publicly unless their ransom demands were met.