In November 2023 [1] [2] [3] [6], Fidelity National Financial (FNF) [1] [2] [3] [4] [5] [6], a leading company in the real estate and mortgage industry in the United States [6], fell victim to a significant cyberattack attributed to the BlackCat ransomware gang. This attack resulted in unauthorized access and extraction of data from FNF’s systems [6], compromising approximately 1.3 million customer records [6].


FNF became aware of the incident on Nov 19 and promptly took action to contain it. They notified affected parties and provided protective services to mitigate the impact. The cyberattack caused a week-long outage and disrupted operations [1], particularly in areas such as title insurance and mortgage transactions [4]. However, FNF’s majority-owned subsidiary [4], F&G Annuities & Life [4], remained unaffected.

FNF completed its forensics investigation by Dec 13 and found no evidence of direct impact on customer-owned systems [5]. To assist affected customers [1] [4], FNF is offering credit monitoring and identity theft restoration services [2] [4] [5]. This incident has raised concerns about the safety of customer information and highlights the ongoing risks in the digital world.

FNF’s swift response in engaging cybersecurity experts, informing the police [4], and containing the problem demonstrates the challenges companies face in protecting customer data. The industry as a whole must remain vigilant and take proactive measures to defend against cyber threats [4]. The BlackCat ransomware gang [3] [4] [5] [6], also known as ALPHV [1] [6], is notorious for their involvement in high-profile cyberattacks [6]. Other companies in the mortgage and housing industry have also fallen victim to their attacks.

As a result of this attack, FNF is currently facing multiple lawsuits. The full impact of the breach is difficult to determine, as ransomware gangs often employ double or triple extortion techniques and may use stolen data months later [5].


This cyberattack on Fidelity National Financial has had significant impacts on the company’s operations and customer trust. However, FNF’s quick response and efforts to assist affected customers through credit monitoring and identity theft restoration services are commendable. This incident serves as a reminder of the ongoing risks in the digital world and the need for companies to prioritize cybersecurity measures. The mortgage and housing industry [1] [6], in particular, must remain vigilant and take necessary steps to defend against cyber threats [4]. The repercussions of this attack, including the lawsuits faced by FNF, highlight the importance of robust security measures and the potential long-term consequences of such breaches.