KeyBank: Hackers from a third-party provider stole customer data | Technology

The hackers obtained the information on July 5 after breaking into the computers of insurance service provider Overby-Seawell Company, according to a letter Cleveland-based KeyBank sent to affected residential mortgage customers.

KeyBank, which operates in 15 states and has about $200 billion in assets, did not say how many of its customers were affected or answer any other questions about the breach. In a statement, he said he was notified of the data breach on August 4 and that KeyBank’s systems and operations were not affected.

Overby-Seawell did not respond to emails and phone messages sent to executives seeking comment. In the statement sent to The Associated Press on Friday, KeyBank said Kennesaw, Ga.-based Overby-Seawell “experienced a cybersecurity incident that compromised its corporate customer data.” He did not give more details.

According to its website, Overby-Seawell’s clients include banks, credit unions, mortgage servicers, finance companies and real estate investors. Its products include a tracking system for real-time insurance monitoring that can be integrated with other financial industry software platforms.

It is a subsidiary of the Breckenridge Group, also of Kennesaw.

In an Aug. 26 letter shared with the AP by an affected mortgage holder, KeyBank said information acquired in the Overby-Seawell breach related to their mortgage includes their name, address, mortgage account number and the first eight digits of its nine digits. digits of the Social Security number.

That’s a lot of information for identity thieves to commit serious fraud.

“We take this matter very seriously and have notified all affected individuals,” KeyBank said in the letter.

KeyBank said that Overby-Seawell had notified police and was investigating the breach with the help of third-party cybersecurity experts. He encouraged the mortgage holder to sign up for free fraud monitoring.