(Reuters) – US Property Insurance Company First American Financial Corp said on Friday that it had learned from a design flaw in one of the production applications that had allowed unauthorized access to customer data.
The statement was sent in response to a report from the security news site Krebs on Security, which said the First Americans website had exposed 885 million files from 2003.
First, the US said it had disabled access to the application and evaluated the impact of error.
"We are currently evaluating the effect, if any, on the security of customer information. We have employed an external forensic firm to make sure that there has been no meaningful unauthorized access to our customer data," First American says.
Digital records, including bank account numbers and information, mortgage and tax records, social security numbers, transaction receipts for receipts and driver card images were available without authorization to anyone with a browser, according to the Krebs on Security report bit.ly / 2HQUbkj. [1[ads1]9659002] The report added that there was no information on whether fraudsters had been aware of the exposure.
First US financial stocks fell 2.2 percent to $ 54.05 in the aftermarket.
Reporting Kanishka Singh in Bengaluru, Editing by Rosalba O & B; Brien