Earlier this year, Primary Residential Mortgage, Inc. issued a press release indicating that the company had experienced a cyber attack in which the information of thousands of consumers and employees fell into the hands of unauthorized third parties. On October 27, 2021, Primary Residential Mortgage, Inc. sent a data breach notification letter to all concerned parties stating that a hacker had gained access to some of the company’s electronic files. As a result, the names, social security numbers, driver’s license numbers, and state ID numbers of an estimated 59,559 consumers have been compromised. Anyone who received the primary residential mortgage privacy notice letter is at greater risk of identity theft and other financial loss.
If you are among those who have received a privacy breach notification from Primary Residential Mortgage, Inc., it is important that you take immediate steps to protect yourself. While it is too early to determine whether Primary Residential Mortgage, Inc. is responsible for the misuse of consumer information, affected consumers may be able to seek financial compensation from the company if this occurs.
Can You Take Legal Action Against Primary Residential Mortgage, Inc.?
Businesses owe both customers and consumers a duty to protect their data. When you have applied for a loan product through Primary Residential Mortgage, the last thing you expect is that your personal information gets into the hands of a potential criminal. However, that is exactly what appears to have happened to more than 59,000 people. If a company mishandles consumer information, it can be held financially responsible to those whose information has been accessed. However, privacy laws are complex and, at this point in time, it is unclear whether Primary Residential Mortgage, Inc. mishandled consumer information in the lead up to the cyberattack. However, ours is Data breach lawyers are currently investigating whether there is a potential class action lawsuit against Primary Residential Mortgage due to the recent data breach. If you have any questions about your ability to file a class action lawsuit against primary residential mortgages, it is important that you contact a data breach attorney as soon as possible.
What You Can Do to Protect Yourself With Primary Residential Mortgage, Inc.
If you have received a letter from Primary Residential Mortgage, Inc. informing you that your personal information was compromised in the most recent hacking incident, you should take immediate steps to protect yourself. While receiving a letter doesn’t guarantee that your information is in the hands of a criminal, it does mean you are at greater risk of identity theft. Below is a list of steps you can take to reduce the chances of identity theft or other negative consequences that could result from the data breach:
- Read the data breach notification letter in its entirety to determine what information the hacker may have accessed
- Make a copy of the letter and keep it for your records;
- Sign up for Primary Residential Mortgage, Inc.’s free credit monitoring service;
- Log into all online accounts and change your passwords to ensure they are both secure and unique;
- Regularly check your bank account and credit card statements and look out for signs of unauthorized activity;
- Monitor your credit report regularly for signs of fraud or identity theft;
- Contact a credit reporting agency to add a fraud warning to your account; and
- Notify all banks and credit card companies of the data breach.
About Primary Residential Mortgage, Inc.
Primary Residential Mortgage is a private mortgage lender focused on providing a range of loan products to homebuyers and homeowners, including traditional mortgages, reverse mortgages, and refinance options. The company is headquartered in Salt Lake City, Utah, and has offices in 49 states.
For more information about the Primary Residential Mortgage, Inc.
On August 8, 2021, Primary Residential Mortgage, Inc. received a data security event in which an unauthorized party accessed or acquired information on the corporate network. In response, Primary Residential Mortgage asked a cybersecurity firm to conduct further investigation and it was found that some of the data contained personal and identifying information from consumers and employees.
Upon reviewing the information obtained by the unauthorized party, Primary Residential Mortgage Inc. determined that the information obtained contained the names, social security numbers, driver’s license numbers and government identification numbers of up to 59,559 people. On October 27, 2021, the company sent thousands of data breach notification letters to those whose information had been compromised.
Below is a copy of the privacy breach letter issued by Primary Residential Mortgage, Inc. (the actual notice to consumers can be found here):
We are writing to you to inform you of an incident in which some of your data may have been involved. This letter explains the incident, the actions we took, and some of the steps you can take in response.
On August 8, 2021, we identified and resolved a data security incident involving unauthorized access to some of our systems. When we discovered the incident, we immediately took action and took certain servers offline to protect the environment. We also opened a thorough investigation, notified law enforcement agencies and hired outside cybersecurity firms to assist us.
What information was involved?
Our investigation revealed that an unauthorized party accessed or acquired certain data that was stored on our systems during the incident. On September 27, 2021, we discovered that some of the data contained personal data of some PRMI related individuals, including a limited number of borrowers and employees. The information identified includes people’s names, social security numbers, driver’s license numbers, and government or government identification numbers.
What are we doing?
In response to the incident, we took steps to prevent a similar incident from occurring in the future, including implementing additional security measures. As a precaution, we are offering a free one-year membership to credit monitoring and identity theft protection services through IDX. IDX identity protection services include 12 months of credit and CyberScan monitoring, a $ 1,000,000 insurance refund policy, and fully managed identity theft recovery services. Please note that the registration deadline is January 27th, 2021.
What you can do.
We encourage you to sign up for the free credit monitoring service and stay vigilant by reviewing your bank statements and credit reports for unauthorized activity over the next 12 to 24 months. If you discover any unauthorized activity, notify the financial institution and consumer registration authorities immediately. For more information about IDX, including instructions on how to activate your free membership and some additional steps you can take to protect yourself, see the pages following this letter.
For more informations.
If you have any questions, please call 1-833-989-3937 Monday through Friday 7:00 am to 7:00 pm Mountain Time.