Vista Point Data Breach Affects 13,391 Individuals, Exposing Sensitive PII

Vista Point Mortgage recently experienced a significant data breach. The breach was discovered on September 27, 2024, and affected a total of 13,391 individuals across the United States.

The sensitive information exposed during this breach includes:

• Social Security numbers
• Names
• Driver’s license numbers
• Government-issued ID numbers (e.g., passport, state ID card)
• Financial information (e.g., account numbers, credit or debit card numbers)

This breach is particularly concerning due to the nature of the data exposed, which can be used for identity theft or financial fraud. Among the affected individuals, 376 were in Texas, 3 were in Maine, and 52 were in Massachusetts. The company began notifying impacted consumers via U.S. mail on November 18, 2024.

The exposure of such sensitive and personal information underscores the seriousness of the incident.

Vista Point Mortgage's response

Following the discovery of the breach, Vista Point Mortgage, LLC took steps to notify affected individuals. The company sent written notices via U.S. mail beginning on November 18, 2024, to inform consumers about the incident and the potential risks to their personal information.

Steps to take if you are affected by the data breach

If you received a notification from Vista Point Mortgage, LLC, or suspect that your information may have been compromised, it is important to act quickly to protect yourself. Here are some steps you should consider:

1. Monitor your financial accounts and credit reports: Regularly check your bank accounts, credit card statements, and credit reports for any unauthorized transactions or suspicious activity. You can obtain a free credit report from each of the three major credit reporting agencies (Equifax, Experian, and TransUnion) annually at AnnualCreditReport.com.
2. Place a fraud alert on your credit file: Contact one of the three major credit reporting agencies to request a fraud alert. This will make it harder for identity thieves to open accounts in your name.
3. Consider a credit freeze: A credit freeze prevents lenders from accessing your credit report, making it more difficult for identity thieves to open new accounts in your name. You can lift the freeze temporarily if you need to apply for credit.
4. Change passwords and enable two-factor authentication: If any of the exposed information could be linked to online accounts, update your passwords immediately. Use strong, unique passwords for each account and enable two-factor authentication where available.
5. Be cautious of phishing scams: Scammers may use the exposed information to target you with phishing emails or phone calls. Do not provide personal or financial information to unknown sources.
6. Contact your financial institutions: Notify your bank, credit card companies, and other financial institutions about the breach. They may offer additional protections or advice.
7. File a report if you suspect identity theft: If you believe your information has been misused, file a report with the Federal Trade Commission (FTC) at IdentityTheft.gov.

Taking these steps can help mitigate the risks associated with this data breach and protect your personal and financial information.

For more details, you can view the breach disclosure on the websites of the California Attorney General, Texas Attorney General, Maine Attorney General, and Massachusetts Attorney General.