Posted On April 19, 2022 Consumer Privacy & Data Breaches
April 19, 2022 – Recently, Churchill Mortgage Corporation announced a data breach resulting from an unauthorized party gaining access to an employee’s email account. As a result of the Churchill Mortgage data breach, the names, financial account information and Social Security numbers of certain individuals were compromised. On April 12, 2022, Churchill Mortgage Corp. began sending out data breach notifications to all affected parties.
It is essential those who receive a data breach notification from Churchill Mortgage Corp. understand what is at risk. The data breach lawyers at Console & Associates, P.C. are actively investigating the Churchill Mortgage Corp. data breach. As a part of our investigation, we are providing free consultations to anyone affected by the breach who is interested in learning more about the risks of identity theft, what they can do to protect themselves, and what their legal options may be to obtain compensation from Churchill Mortgage Corp.
In 2021, there were 1,862 data breaches affecting more than 189,000,000 individuals. Victims of identity theft spend, on average, 200 hours and more than $1,300 recovering their identity. Many of these victims also suffer credit damage, emotional distress, and may even end up with a criminal record. Taking immediate action is the best way to prevent the worst consequences of a data breach.
According to a letter by the company’s attorneys, Churchill Mortgage recently detected that an unauthorized party gained access to an employee’s email account. In response, the company secured the account and began an investigation into the incident. On February 10, 2022, the investigation revealed that certain information was accessible to the unauthorized party through the affected email account between November 13, 2021 and November 18, 2021.
Upon learning of the extent of the security breach, Churchill Mortgage Corp. then reviewed the affected files to determine what information was compromised. While the compromised information varies based on the individual, it may include your name, Social Security number and financial account information.
On April 12, 2022, Churchill Mortgage Corp. began sending out data breach notification letters to all individuals whose information was compromised as a result of the recent data security incident.
Churchill Mortgage Corp. is a residential mortgage company based in Brentwood, Tennessee. Churchill Mortgage was founded in 1992, and provides customers with a range of mortgage and refinance options. The company operates in 49 states and wrote over 17,000 mortgages in 2021. Churchill Mortgage Corporation employs over 800 people and generates approximately $574 million in annual revenue.
When you allowed Churchill Mortgage access to your personal data, you trusted the company to keep your sensitive information safe. However, news of the Churchill Mortgage data breach raises some very serious questions about the company’s data security measures and whether the company could have done more to prevent this type of cyber-attack.
Regardless of the industry, all businesses have a legal obligation to protect consumer information in their possession. Although creating and maintaining a data security system is costly, this is a necessary expense given the frequency with which cyberattacks occur.
Consumers whose personal, identifying, financial or healthcare-related data was compromised in a data breach can pursue legal action against a company that misused or mishandled their information. However, the investigation into the Churchill Mortgage Corp. breach is only in its beginning phases. For that reason, it is too early to tell if Churchill Mortgage was legally responsible for the breach. However, our data breach attorneys are investigating the Churchill Mortgage Corp. security breach to determine the potential legal remedies of those affected.
If you have questions about your ability to pursue a data breach class action lawsuit against Churchill Mortgage, contact a data breach attorney as soon as possible.
If you receive a data breach notification from Churchill Mortgage in the coming weeks, it means your personal data was compromised in the recent cyberattack. It also means a cybercriminal may have had access to—and may have stolen—your personal data. Given the risks involved, it is important you remain vigilant by taking the following steps:
At Console & Associates, P.C., our consumer privacy lawyers monitor all security and data breaches to help affected consumers pursue their legal remedies. We offer free consultations to victims of data breaches and can explain your rights in clear, understandable terms so you can make an informed decision about how to proceed with your case. If you’ve been affected by the Churchill Mortgage data breach or any other data security incident, Console & Associates, P.C., will investigate your case at no charge and offer you thorough advice about how to most effectively proceed with your case. If you decide to bring a case, we only get paid if you do. If your claim is successful, any legal fees are either paid by the defendant or come out of the funds recovered from the defendant. If your claim doesn’t result in a recovery, you will pay nothing.
We are writing on behalf of our client, Churchill Mortgage Corporation (“Churchill”), to notify you of a security incident involving New Hampshire residents.
Churchill recently concluded its investigation into a security incident involving unauthorized access to an employee’s email account. Upon identifying the unauthorized activity, Churchill promptly secured the account and launched an investigation. The investigation determined that an unauthorized party gained access to one employee’s email account between November 13, 2021 and November 18, 2021. Churchill conducted a thorough review of the employee’s email mailbox, and, on February 10, 2022, Churchill determined that the files contained personal information of twenty (20) New Hampshire residents, including their name and one or more of the following: financial account number and/or Social Security number.
On April 12, 2022, Churchill provided written notice via United States Postal Service First Class Mail to the New Hampshire residents whose personal information was potentially accessed by an unauthorized party, in accordance with N.H. Rev. Stat. Ann. § 359-C:20. A copy of the notification letter is enclosed. Churchill is offering the New Hampshire residents whose Social Security number was affected a complimentary, one-year membership to credit monitoring and identity theft prevention services through Experian. Churchill is encouraging all affected individuals to remain vigilant by reviewing their accounts for unauthorized activity. Churchill has also established a dedicated, toll-free phone number where all individuals may obtain more information regarding the incident.
To help prevent a similar incident from occurring in the future, Churchill has implemented additional security measures to enhance the security of its network and continues to train its employees concerning data security.
Please do not hesitate to contact me if you have any questions regarding this matter.