First American Data Breach Affects 41,638 Individuals

On December 18, 2023, First American Financial Corporation discovered unauthorized activity on certain of its information technology systems. This incident led to the exposure of sensitive personal information of 41,638 individuals in the United States, including 1,479 in Texas and 55 in Maine. The exposed data includes:

• Name of individual
• Address
• Social Security Number
• Driver’s License number
• Government-issued ID number (e.g. passport, state ID card)
• Financial Information (e.g. account number, credit or debit card number)
• Date of Birth
• Driver's License Number or Non-Driver Identification Card Number

The breach was identified when First American noticed unusual activity and immediately took steps to contain and assess the situation. They isolated their systems from the Internet and launched an investigation with the help of external cybersecurity experts. The investigation revealed that certain individuals’ personal information might have been accessed without authorization.

First American has reported the breach to various state Attorney General offices, including Maine, Texas, Massachusetts, and California.

First American Financial Corporation's Response

Upon discovering the breach, First American took immediate action to contain and remediate the incident. They isolated affected systems from the Internet and enlisted the help of leading external cybersecurity experts to investigate the breach. The company has also worked with law enforcement and notified relevant regulatory authorities. Additionally, First American has further strengthened its network security to prevent future incidents.

The company is offering affected individuals 24 months of complimentary credit monitoring and identity theft restoration services through Experian. Affected individuals are encouraged to enroll in these services by visiting the Experian IdentityWorks website and using the provided activation code.

Steps for Affected Individuals

If you believe you have been affected by this data breach, it is crucial to take the following steps to protect your personal information:

1. Enroll in Credit Monitoring Services: Take advantage of the 24 months of complimentary credit monitoring and identity theft restoration services offered by First American through Experian. Visit Experian IdentityWorks and use the provided activation code before September 30, 2024.

1. Order Your Free Credit Report: Visit AnnualCreditReport.com to obtain your free credit report. Review it carefully for any inaccuracies or accounts you don’t recognize.
2. Place a Fraud Alert: Contact one of the major credit bureaus (Equifax, Experian, or TransUnion) to place a fraud alert on your credit file. This will notify creditors to take extra steps to verify your identity before opening new accounts.
3. Consider a Security Freeze: You can place a security freeze on your credit file to prevent creditors from accessing your credit report without your consent. This can be done by contacting each of the credit bureaus.
4. Monitor Your Accounts: Regularly review your account statements and monitor your credit reports for any suspicious activity or errors.
5. Report Identity Theft: If you detect any signs of identity theft, report it to your local law enforcement, your state Attorney General, and the Federal Trade Commission (FTC). Visit the FTC’s Identity Theft website for more information.