Connect with us

Hi, what are you looking for?


Data Breaches

Personal Information of 44,000 Compromised in First American Cyberattack

First American will notify 44,000 individuals that their personal information may have been stolen in a December 2023 ransomware attack.

First American Financial Corporation this week revealed that the personal information of 44,000 individuals may have been compromised in a December 2023 cyberattack.

The financial services firm initially disclosed the incident on December 21, when it announced that it had taken certain systems offline as a containment measure, after identifying unauthorized activity on its network.

The next day, First American announced that it had taken its email systems offline as well, and cautioned that First American Title and subsidiaries were also impacted.

One week later, the financial services firm said that it had started bringing some of its systems online, but full restoration was only announced on January 8, 2024.

On December 29, First American informed the Securities and Exchange Commission (SEC) of a data breach resulting from the incident and also revealed that data on certain non-production systems had been encrypted.

In a May 28 filing with the SEC, the financial services company revealed that 44,000 individuals were potentially impacted by the incident, without sharing specific details on the type of personal information that might have been compromised.

“The company will provide appropriate notifications to potentially affected individuals and offer those individuals credit monitoring and identity protection services at no cost to them,” First American said.

The company has not shared information on the ransomware gang behind the attack either, nor has it revealed whether a ransom was paid out.

Advertisement. Scroll to continue reading.

Responding to a SecurityWeek inquiry, First American refrained from sharing additional details on the attack.

“First American’s investigation into its December 2023 cybersecurity incident conducted with leading external cybersecurity experts found that an unauthorized party may have accessed certain personal information,” the company said.

“First American takes this incident and the security of information in our care seriously and has further strengthened its already-robust network security,” First American added.

*Updated with statement from First American.

Related: Christie’s Confirms Data Breach After Ransomware Group Claims Attack

Related: 2.8 Million Impacted by Data Breach at Prescription Services Firm Sav-Rx

Related: 400,000 Impacted by CentroMed Data Breach

Written By

Ionut Arghire is an international correspondent for SecurityWeek.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders.


People on the Move

Retired U.S. Army General and former NSA Director Paul M. Nakasone has joined the Board of Directors at OpenAI.

Jill Passalacqua has been appointed Chief Legal Officer at autonomous security solutions provider

Cisco has appointed Sean Duca as CISO and Practice Leader for the APJC region.

More People On The Move

Expert Insights