← Back to incidents

Incident · Unknown

Fidelity National Financial, Inc. · FNF

FinancialsUSAIncident November 19, 2023Filed November 21, 2023
Impact score
Business continuity
Partial
Insurance involved
Not disclosed
Filing
8-K · 8.01

Breach taxonomy

UnknownData ExfilCred StuffingRevenue ProcessConfidential BizBiz InterruptionInfo Privacy Loss

Summary

Fidelity National Financial became aware of a cybersecurity incident impacting certain FNF systems in November 2023. The company blocked access to certain systems as a containment measure, causing disruptions to title insurance, escrow, mortgage transaction services, and real estate technology services. An unauthorized third party accessed certain FNF systems and acquired certain credentials. The company's majority-owned subsidiary F&G Annuities & Life was not impacted. Filed under Item 8.01; materiality assessment ongoing.

Tagging rationale

ThreatUnknown

Filing does not attribute the incident to a specific actor → UNKNOWN.

MethodsData ExfilCred Stuffing

Unauthorized third party accessed FNF systems and acquired credentials (CRED-STUFFING / credential access); data including credentials was exfiltrated → DATA-EXFIL + CRED-STUFFING.

AssetsRevenue ProcessConfidential Biz

The incident disrupted title insurance, escrow, mortgage transaction services, and real estate technology — all core revenue-generating processes (REVENUE-PROCESS); credentials were also acquired (CONFIDENTIAL-BIZ).

EffectsBiz InterruptionInfo Privacy Loss

Access to systems was blocked as containment measure, disrupting title insurance and mortgage services (BIZ-INTERRUPTION); credentials and data were acquired by unauthorized party (INFO-PRIVACY-LOSS).

Business continuityPartial

Filing states the company is working to restore normal operations; services to real estate and mortgage industries were disrupted by containment measures → Partial.

Impact

Major title insurer with disruption to real estate and mortgage transaction services across the US; credentials acquired; significant downstream impact on property closings → score 3.

InsuranceNot disclosed

Filing makes no mention of insurance → null.

Read the original SEC filing excerpt
Fidelity National Financial, Inc. (FNF or the Company) recently became aware of a cybersecurity incident that impacted certain FNF systems. FNF promptly commenced an investigation, retained leading experts to assist the Company, notified law enforcement authorities, and implemented certain measures to assess and contain the incident. Among other containment measures, we blocked access to certain of our systems, which resulted in disruptions to our business. For example, the services we provide related to title insurance, escrow and other title-related services, mortgage transaction services, and technology to the real estate and mortgage industries, have been affected by these measures. Our majority-owned subsidiary, F&G Annuities & Life, a leading provider of insurance solutions, was not impacted by the incident. Based on our investigation to date, FNF has determined that an unauthorized third party accessed certain FNF systems and acquired certain credentials.
View SEC filingBack to database

More in Financials

Unknown · March 23, 2026

Bitcoin Depot Inc.

On March 23, 2026, Bitcoin Depot discovered that an unauthorized party gained access to its IT systems and obtained control of credentials a

Unknown · March 2, 2026

Heritage Financial Corporation

On or about March 2, 2026, Heritage Financial Corporation detected unauthorized access to an internal file share server used by employees, w

Unknown · September 1, 2025

Prosper Marketplace, Inc.

On September 1, 2025, Prosper Marketplace identified that an unauthorized third party gained access to company systems containing proprietar

Unknown · August 14, 2025

BayFirst Financial Corp.

On August 14, 2025, BayFirst National Bank was notified of a cybersecurity incident at a third-party marketing services provider. On October