885 Million Mortgage Documents Exposed Thanks to Website Vulnerability

885 Million Mortgage Documents Exposed Thanks to Website Vulnerability

First American Financial Corporation was made aware of a flaw that exposed their client's mortgage documents.

  • By Sydny Shepard
  • May 29, 2019

Another week, another vulnerability making the private information public to the world. Last week, it was First American Financial Corporation who was notified by a well-known cybersecurity blogger that a flaw in its website was risking the information on 885 million records related to mortgage deals that dates back nearly 16 years.

According to Brian Krebs, writer of Krebs on Security, a flaw in an internet application allowed anyone with any basic web browser to see confidential data such as Social Security numbers, bank account details, driver's license and mortgage and tax records.  

The vulnerability was reported by Krebs on his blog and First American Financial quickly blocked all access as of last Friday.

"We are currently evaluating what effect, if any, this had on the security of customer information," the company said in a statement. "We will have no further comment until our internal review is completed."

According to the Associated Press, if the 885 million records were harvested by a bad actor, it would rank among one of the biggest leaks of data on the internet. 

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • New Research Shows a Continuing Increase in Ransomware Victims

    GuidePoint Security recently announced the release of GuidePoint Research and Intelligence Team’s (GRIT) Q1 2024 Ransomware Report. In addition to revealing a nearly 20% year-over-year increase in the number of ransomware victims, the GRIT Q1 2024 Ransomware Report observes major shifts in the behavioral patterns of ransomware groups following law enforcement activity – including the continued targeting of previously “off-limits” organizations and industries, such as emergency hospitals. Read Now

  • OpenAI's GPT-4 Is Capable of Autonomously Exploiting Zero-Day Vulnerabilities

    According to a new study from four computer scientists at the University of Illinois Urbana-Champaign, OpenAI’s paid chatbot, GPT-4, is capable of autonomously exploiting zero-day vulnerabilities without any human assistance. Read Now

  • Getting in Someone’s Face

    There was a time, not so long ago, when the tradeshow industry must have thought COVID-19 might wipe out face-to-face meetings. It sure seemed that way about three years ago. Read Now

    • Industry Events
    • ISC West
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Hanwha QNO-7012R

    Hanwha QNO-7012R

    The Q Series cameras are equipped with an Open Platform chipset for easy and seamless integration with third-party systems and solutions, and analog video output (CVBS) support for easy camera positioning during installation. A suite of on-board intelligent video analytics covers tampering, directional/virtual line detection, defocus detection, enter/exit, and motion detection. 3

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction. 3