Breach taxonomy
Summary
On October 31, 2023, Mr. Cooper Group discovered an unauthorized third party had gained access to certain of its technology systems. The company deployed containment measures including shutting down certain systems. A subsequent amendment confirmed that personal information of substantially all current and former customers was obtained, with fourth-quarter remediation vendor costs updated to $25 million. Mr. Cooper offered two years of complimentary identity protection and credit monitoring to all current and former customers. Filed under Item 8.01; company initially determined not material.
Tagging rationale
ThreatUnknown
Filing does not attribute the incident to a specific actor → UNKNOWN.
MethodsData Exfil
Unauthorized third party accessed technology systems and exfiltrated customer personal information → DATA-EXFIL.