Cyber Incident Victim: HomeTrust Mortgage
Date:
Jul 2022
Location:
United States of America
Summary
HomeTrust Mortgage suffered a ransomware attack that compromised consumer data, including names, addresses, and Social Security numbers. The company worked with third-party security experts to investigate the incident and confirmed that an unauthorized party accessed and removed sensitive files from their network. HomeTrust Mortgage notified affected individuals and provided guidance on protecting themselves from identity theft and fraud.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 3 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
HomeTrust Mortgage, a non-depository mortgage bank based in Houston, Texas, suffered a significant cyber incident when hackers successfully executed a ransomware attack against the company. The breach compromised consumer data, including names, addresses, and Social Security numbers, stored on the company’s computer system. HomeTrust Mortgage promptly engaged third-party data security experts to investigate the incident and determine the extent of the data compromise. The investigation confirmed that an unauthorized party gained access to the network, removed sensitive files, and potentially disclosed the information. HomeTrust Mortgage subsequently notified all affected parties by sending data breach letters, providing guidance on protecting themselves from identity theft and other frauds. The company’s response included detailed steps to mitigate the impact of the breach and assist affected customers. Despite the breach, the exact motives of the attackers and their identities remain undisclosed. The incident highlights the ongoing threat of ransomware attacks against financial institutions and the critical importance of robust cybersecurity measures to protect sensitive consumer data.