NJ Lenders Corp Data Breach Compromises PII

NJ Lenders Corp, a mortgage banker licensed to lend in 22 states, experienced a cybersecurity incident. On Aug. 18, 2025, an unauthorized actor accessed internal systems and may have acquired sensitive personal information.

An investigation was completed on Sept. 12, 2025 and NJ Lenders Corp. began notifying affected individuals by mail on Oct. 10, 2025. This type of data breach often compromises both personal and financial information.

Exposed information may include names, addresses, dates of birth, Social Security numbers, driver's license numbers, employment information, taxpayer information and financial account information. The total number of affected individuals has not been publicly disclosed, but is believed to include customers and applicants from multiple states.

The cyberattack was also disclosed to the Maine Attorney General's office on Oct. 20, 2025. A financial institution data breach can put individuals at risk for identity theft and financial fraud.

NJ Lenders Corp's response

Immediately after discovering the incident, NJ Lenders Corp engaged external cybersecurity experts to assess the scope of the breach and notified law enforcement. The company is also offering impacted individuals complimentary IDX identity theft protection services, which includes credit and CyberScan monitoring, a $1 million insurance reimbursement policy, and identity theft recovery services. Affected individuals can enroll in these services through Jan. 10, 2026

If you receive notification from NJ Lenders Corp. about this breach, you may want to:

• Sign up for the free IDX identity theft protection services, offered by the company
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

More information about the mortgage banker can be found on the NJ Lenders Corp official website.