Connect with us

Hi, what are you looking for?


Data Breaches

Nations Direct Mortgage Data Breach Impacts 83,000 Individuals

Nations Direct informs 83,000 individuals that their personal information was compromised in a data breach.

Nations Direct Mortgage has started informing more than 83,000 individuals that their personal information was compromised in a December 2023 data breach.

The incident, the lender says in a notification, was identified on December 30 and resulted in unauthorized access to certain systems containing clients’ personal information and other Nations Direct data.

The compromised information, the company reveals, includes names, addresses, Social Security numbers, and Nations Direct loan numbers.

“It is important to note that we have not found any evidence that data was removed or exfiltrated, nor have we identified any fraudulent use of anyone’s personal information as a result of this incident,” the company says.

Nations Direct claims that it contained the incident shortly after discovering it and that it immediately notified the relevant authorities.

While the notification does not say how many individuals were affected, Nations Direct informed the Maine Attorney General’s Office that it is sending written letters to 83,000 people.

The company is providing the affected individuals with identity monitoring services at no cost.

Nations Direct faces a class action lawsuit as a result of the data breach, as law firms are currently investigating the incident.

Advertisement. Scroll to continue reading.

Nations Direct is just one of the several major US financial services firms to have disclosed a security incident over the past months, following Fidelity National Financial (the attack impacted LoanCare customers), First American, LoanDepot, Mr. Cooper, and Prudential Financial.

A financial services company specialized in mortgage lending that operates mainly in the US, Nations Direct Mortgage is an approved Fannie Mae and Freddie Mac seller and servicer.

Related: EquiLend Ransomware Attack Leads to Data Breach

Related: Fidelity Investments Life Insurance Company Notifying 28,000 People of Data Breach

Related: American Express Notifies Customers of Data Breach

Written By

Ionut Arghire is an international correspondent for SecurityWeek.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

Former DoD CISO Jack Wilmer has been named CEO of defensive and offensive cyber solutions provider SIXGEN.

Certificate lifecycle management firm Sectigo has hired Jason Scott as its CISO.

The State of Vermont has appointed John Toney as the state’s new CISO.

More People On The Move

Expert Insights

Related Content

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Data Breaches

Delta Dental of California says over 6.9 million individuals were impacted by a data breach caused by the MOVEit hack.

Data Breaches

Sony shares information on the impact of two recent unrelated hacker attacks carried out by known ransomware groups. 

Data Breaches

A group of hackers has leaked Atlassian employee records and floorplans, information that was obtained from third-party workplace platform Envoy.

Data Breaches

AT&T is notifying millions of wireless customers that their CPNI was compromised in a data breach at a third-party vendor.