First American Financial Corporation, a major player in the financial sector, fell victim to a cyberattack on Wednesday, prompting the company to initiate a temporary shutdown of specific systems.
Confirming the First American cyberattack on Thursday, the company announced ongoing efforts to restore normal business operations swiftly. To keep stakeholders informed, the company will be providing regular updates on the First American cyberattack at FirstAmUpdate.com.
The website currently displays a notice acknowledging the cybersecurity incident and the necessary measures taken to mitigate its impact. The company is committed to keeping the public apprised of developments related to the First American cyberattack through this dedicated platform.
First American Cyberattack: Regulatory Compliance and SEC Rules
Despite the severity of the incident, no official filing has been submitted to the Securities and Exchange Commission (SEC) as of now.
However, the SEC’s recently implemented rules, effective from September 5, 2023, mandate public companies to disclose material cybersecurity incidents within four business days of determining their significance.
Additionally, annual disclosures on cybersecurity risk management, strategy, and governance are required. As a publicly traded company, First American must adhere to these regulations.
Pattern of Breaches in the Financial Sector
This cyberattack follows a trend of security breaches within the financial sector. Notably, in November, First American Title Insurance Co., a subsidiary, settled with the New York State Department of Financial Services for US$1 million due to violations related to a 2019 data leak. Similar incidents have occurred at other financial entities, including Fidelity National Financial (FNF) and Mr. Cooper Group.
The recent breaches at FNF, the largest underwriter of title insurance in the mortgage and real estate industries, and Mr. Cooper Group, one of the nation’s largest mortgage servicers, highlight the vulnerability of the financial sector to cyber threats.
While FNF has not disclosed the full extent of its breach, lawsuits against Mr. Cooper Group indicate that over 14 million customers‘ data may have been exposed.
The recurrent cyberattacks on prominent financial institutions raise concerns about the sector’s susceptibility to such threats. The financial industry must prioritize robust cybersecurity measures to safeguard sensitive information and maintain the trust of customers and investors.
As cyber threats evolve, a proactive approach to cybersecurity becomes imperative for the financial sector to protect its assets and ensure the stability of the global economy.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
