24th November 2025 – A recent data breach on mortgage and loan technology provider SitusAMC may have exposed sensitive customer data linked to major U.S. banks, including JPMorgan Chase, Citi, and Morgan Stanley. The breach has raised serious concerns across the financial sector.

Key Takeaways

SitusAMC, a major mortgage and loan tech provider, suffered a cyberattack on November 12, exposing sensitive data.
Top U.S. banks including JPMorgan, Citi, and Morgan Stanley were notified that their client data may have been compromised.
The breach may involve Social Security numbers and sensitive compliance information, not just customer records.
The FBI confirmed no operational impact but is investigating alongside affected institutions and law enforcement.

Details of the Cyberattack

SitusAMC reported that the incident occurred on November 12, when attackers accessed information from its internal systems. The compromised data includes customer records and legal documents tied to bank clients. The company did not name which financial institutions were affected but confirmed that law enforcement had been notified. This data breach has apparently left major US Banks open to vulnerability.

Banks Assess the Impact

According to sources cited by the New York Times, JPMorgan, Citi, and Morgan Stanley were among the banks alerted about potential data exposure. Although JPMorgan stated its systems were not breached, the risk lies in the data handled by SitusAMC on the bank’s behalf.

The vendor provides critical back-end services like loan origination, compliance, and payment processing. It supports hundreds of banks and lenders across the United States.

Types of Data at Risk

The stolen data likely includes:

Social Security numbers from loan applications
Confidential customer information
Documents related to banks’ portfolios and compliance efforts

Regulatory experts suggest the breach may also involve sensitive details about the banks themselves. Because SitusAMC handles regulatory compliance, attackers may have accessed internal operational data that extends beyond just client records.

FBI and Law Enforcement Response

The FBI confirmed it is working closely with affected institutions. FBI Director Kash Patel said investigators have found no disruption to core banking services. Authorities continue to assess how deeply the breach affects the broader financial system.

Largest Bank Data Breaches Ever

      Largest Data Breaches In Banking & Financial Services
    
Breach
What Happened
Impact
Equifax (2017)

        Massive breach caused by an unpatched Apache Struts vulnerability, allowing attackers to access sensitive personal data.
      
        ~147M individuals impacted; exposed SSNs, birthdates, addresses, driver’s licenses, and credit card data.
      
JPMorgan Chase (2014)

        Attackers gained access via a compromised employee account and moved laterally due to weak network segmentation.
      
        83M accounts affected; names, emails, addresses, and phone numbers leaked.
      
First American Financial (2019)

        A flawed web app exposed documents through sequential URLs without authentication.
      
        ~885M sensitive financial documents exposed, including bank statements, wire transfer receipts, SSNs, and IDs.
      
Indian Banks – Debit Card Breach (2016)

        Malware on Hitachi Payment Systems’ network affected major Indian banks through compromised payment gateways.
      
        3.2M debit cards compromised across SBI, HDFC, ICICI, Axis, and YES Bank.
      
Capital One (2019)

        Misconfigured AWS firewall enabled unauthorized access to cloud-stored credit application data.
      
        106M customers affected; names, SSNs, credit scores, and transaction data exposed.

Why This Data Breach On US Banks Matters

SitusAMC, based in New York, employs around 5,000 people and plays a behind-the-scenes role in the U.S. real estate finance market. Most top-20 banks rely on it for commercial and residential loan infrastructure.

The breach highlights the risks tied to third-party vendors in finance. Experts warn that even when a bank’s internal systems remain secure, vendors like SitusAMC can serve as entry points for attackers. As banks tighten cybersecurity, attention is now shifting to partners who manage their customer and compliance data.

Frequently Asked Questions

What happened at SitusAMC?

A cyberattack occurred on November 12, targeting SitusAMC’s systems and exposing client data related to mortgage and loan services.

Which banks were affected by the breach?

JPMorgan Chase, Citi, and Morgan Stanley were notified of possible exposure, though their own systems were not breached.

What kind of data was compromised?

The exposed data may include Social Security numbers, legal documents, and confidential information tied to compliance and bank portfolios.

Is the incident under investigation?

Yes. The FBI and other law enforcement agencies are investigating the breach, and SitusAMC is continuing to assess the full impact.

Join Our Telegram Community

NEWS

OPINION/RESEARCH

FEATURES

ABOUT US