alphv attacks Hometrust Mortgage Company

Incident Date:

July 23, 2022

World map



alphv attacks Hometrust Mortgage Company


Hometrust Mortgage Company




Weston, USA

Florida, USA

First Reported

July 23, 2022

HomeTrust Mortgage Company Suffers Ransomware Attack

HomeTrust Mortgage Company, a prominent entity in the financial services sector with a specialization in mortgage loans, has recently fallen victim to a ransomware attack. This incident has led to the unauthorized disclosure of sensitive personal information of an indeterminate number of individuals. Established in 1986, the company has broadened its footprint to encompass operations in Alabama, Florida, Georgia, New Mexico, and Tennessee.

Incident Overview

On July 15, 2022, HomeTrust Mortgage detected anomalous activities within its network infrastructure. Subsequent investigations uncovered that an unauthorized entity had infiltrated the network and exfiltrated files containing critical consumer data, such as names, addresses, and Social Security numbers.

In response to this breach, HomeTrust Mortgage has initiated communication with all impacted parties through data breach notifications. These communications aim to inform affected individuals about the breach and provide guidance on safeguarding against potential identity theft and fraud. Currently, HomeTrust Mortgage boasts a workforce exceeding 100 employees and generates an estimated annual revenue of $23 million.

Impact and Response

This ransomware attack represents a significant disruption for HomeTrust Mortgage, a company with over three decades of operational history and a presence in multiple states. The incident underscores the critical need for stringent cybersecurity defenses within the financial services industry.

While the precise number of affected individuals remains undisclosed, reports suggest that the data breach has impacted at least 12,873 consumers in Texas and Montana. The identity of the attackers has not been revealed by HomeTrust Mortgage.

The breach serves as a stark reminder to financial institutions about the persistent threat of cyberattacks. It emphasizes the necessity for these institutions to maintain high levels of vigilance and to invest in comprehensive security measures to safeguard customer data effectively.


  • IDStrong - "Florida Home Trust HomeTrust Mortgage Reported a Data Breach"
  • Turke & Strauss LLP - "HomeTrust Mortgage Data Breach Investigation"

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.