SitusAMC hack may have exposed data at major financial heavyweights

News
By published

A company providing the backend for finance giants suffers apparent breach

Cyber-security
(Image credit: Getty Images)
  • SitusAMC suffered a breach exposing both corporate and client data
  • The attack was a smash‑and‑grab, not ransomware; FBI is aware and investigation is ongoing
  • Impacted clients may include major banks and mortgage lenders, though details and perpetrators remain undisclosed

A global firm providing consulting, technology, and outsourced services to some of the biggest banks and mortgage lenders in the United States has suffered a data breach which saw hackers manage to steal some of its sensitive data, as well as the details it held on behalf of its clients.

SitusAMC provides a full suite of services to support the entire lifecycle of commercial and residential real estate finance, from loan origination and underwriting, to portfolio management, servicing, and valuation of debt and equity assets.

Its clients include major banks, private-equity firms, asset managers, residential mortgage originators and servicers, CMBS/RMBS issuers, insurance companies, and institutional investors. Some of the biggest names include UBS Realty Investors, JPMorgan Chase, Hines, Citigroup, and Morgan Stanley.

Aura Family
$60 off
Save 75%
Aura Family: was $80 now $20 at Aura Inc

Aura can protect your family with a plethora of features: Password Manager, ID theft protection, Antivirus, VPN, Parental Control and much more for just $20 per month!

View Deal

FBI was notified

In a short announcement published on its website, SitusAMC said that the stolen data belongs to both itself, and its clients:

“Corporate data associated with certain of our clients’ relationship with SitusAMC such as accounting records and legal agreements has been impacted. Certain data relating to some of our clients’ customers may also have been impacted,” it said, adding that the investigation is still ongoing and that third-party cybersecurity experts have been brought in to assist.

Law enforcement was also notified, the company stressed, and added that this was not a ransomware attack, but rather a simple data smash-and-grab.

We don’t know how many of SitusAMC clients are affected by this attack, or what kind of information was stolen. When reached out by representatives of the media, most banks either declined to comment or simply did not respond to media inquiries. No threat actors have yet taken responsibility for the attack.

Via TechCrunch

Best antivirus software header
The best antivirus for all budgets

➡️ Read our full guide to the best antivirus
1. Best overall:
Bitdefender Total Security
2. Best for families:
Norton 360 with LifeLock
3. Best for mobile:
McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.