The Mortgage Firm Data Breach Exposes PII

The Mortgage Firm, a leading mortgage lender based in Orlando, Fla. experienced a data breach. The breach was reportedly carried out using ransomware, a form of cyberattack in which hackers encrypt a victim’s files and demand payment for their release.

On Feb. 10, 2026, ransomware group CL0P claimed responsibility for the data breach on a dark web leak site. The group alleges it gained access to the organization’s internal data, which may include sensitive customer and company information.

While the exact number of affected individuals has not been disclosed, the nature of the attack suggests that a considerable volume of internal data could be at risk.

At this time, there is no public confirmation regarding the specific types of information exposed; however, data typically targeted in such breaches may include personally identifiable information (PII) such as names, addresses, Social Security numbers, financial account details, loan documents, and potentially other sensitive records related to mortgage applications.

The fact that the data was posted on a Tor-based leak site indicates that the attackers may attempt to extort the company or sell the stolen information to other malicious actors.

The Mortgage Firm's response

Affected individuals should remain vigilant for signs of identity theft or fraud, such as suspicious emails, unexpected credit inquiries, or unauthorized financial transactions.

It is recommended that anyone who has done business with The Mortgage Firm take the following steps:

• Monitor financial accounts and credit reports for unusual activity
• Be cautious of phishing emails or phone calls that may attempt to use stolen information
• Consider placing a fraud alert or credit freeze with major credit bureaus
• Review any official notices from The Mortgage Firm for updates or instructions