A recent cyberattack on technology vendor SitusAMC, which provides services to real estate lenders, may have compromised sensitive customer data at several major U.S. banks. The breach, first detected on November 12, affected information tied to residential mortgage loans. Given the inclusion of personal details such as Social Security numbers, the incident poses a significant security risk.

Affected banks include JPMorgan Chase (JPM.US), Citigroup (C.US), and Morgan Stanley (MS.US). SitusAMC has notified all involved institutions about potential data exposure. While no bank was directly hacked, the vendor’s central role in loan origination and mortgage funding has heightened concerns among financial institutions.

SitusAMC confirmed that compromised data includes corporate records related to client transactions, such as accounting documents and legal contracts.

CEO Michael Franco stated, "We remain focused on analyzing potentially impacted data," adding that law enforcement has been alerted. The company, which contracts with numerous U.S. banks, continues to assess the breach’s scope and provides daily updates on developments.

In response, the FBI is collaborating closely with affected organizations. An FBI official, Kash Patel, noted, "While working with impacted parties to evaluate potential consequences, we confirm no disruption to banking operations."

SitusAMC assured that the incident is contained, services remain fully operational, and the attack did not involve ransomware.