Mr Cooper, the mortgage giant with more than four million customers, has confirmed that customer data was breached during a recent cyber attack.
In one updated notification on its website posted on Thursday, Mr. Cooper said it was “still investigating what data may have been exposed,” although it remains unclear what kind of cyber attack hit Mr. Cooper’s systems.
“Sir. Cooper does not store banking information related to mortgage payments in our systems. This information is hosted on a third party provider and based on the information we have to date, we do not believe it was affected by this incident,” the company added .
The notice said the company plans to mail notices to affected customers “in the coming weeks.”
The outage affecting the housing and lending giants’ systems continues into its second week. Mr Cooper said he was cyberattacked on October 31, which he disclosed two days later. The company said it immediately shut down its systems to contain the cyberattack.
TechCrunch has heard from several customers affected by the cyberattack who say they have been unable to log into their accounts.
In separate deposit with the U.S. Securities and Exchange Commission, Mr. Cooper said it expects to incur additional seller costs of up to $10 million during its fiscal fourth quarter, adding that it does not expect a material impact on its operations.
Mr. Cooper’s representative Christen Reyenga referred our request for comment to a third-party public relations firm, which repeated Mr. Cooper’s updated public statement, but did not respond to our specific questions or say whether the company has received any communication from hackers. Mr Cooper did not make CISO Scot Miller available for an interview when asked by TechCrunch.
Do you work for Mr. Cooper and know more about cyber attack? You can contact Zack Whittaker via email at zack.whittaker@techcrunch.com. You can also share files and documents with TechCrunch via SecureDrop.
