Mortgage Investors Group says cyber attack compromised customers' personal information

Mortgage Investors Group, a leading mortgage services provider based in Tennessee, said it experienced a cyber security incident that compromised the sensitive personal information of its customers.

 

Headquartered in Knoxville, Tennessee, Mortgage Investors Group specialises in residential mortgage. With over 26 branches and more than 300,000 customers, it has secured more than $30 billion in closed loans since it was founded in 1989.

 

In a data breach notice posted on its website, MIG said that on December 12, it identified a data security incident affecting its internal network. The company immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

The investigation revealed that threat actors infiltrated MIG’s internal network on December 11 and “gained access to the company’s computer environment. This unauthorised access resulted in the exposure of sensitive personal information pertaining to a number of individuals.”

 

The compromised data includes full names and financial information of its customers. MIG is yet to confirm the number of affected individuals.

 

“Since discovering the incident, we have proactively engaged a vendor to identify the affected individuals and types of information compromised, a process which will take several weeks. Upon concluding this identification process, we will notify all affected individuals directly,” MIG added.

 

While MIG found no evidence of the compromise data being misused, it has advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and state attorney general.

 

The company has promised to offer complimentary identity protection and credit monitoring services to all affected individuals once identified.

 

Recently, the infamous Black Basta ransomware group claimed responsibility for attacking MIG and listed it as a victim on its data leak site. The group gave the mortgage company a deadline of seven days to pay a ransom, failing which it will publish the stolen data online. It is unclear if MIG engaged with the hackers or paid a ransom to regain access to the stolen information.