(Reuters) – US real estate company First American Financial Corp. found a design flaw on Friday in one of its production applications that allowed unauthorized access to customer data.
The statement was sent in response to a report from the security news website Krebs on Security, which said that the First American website had revealed around 885 million files from 2003.
First American claimed to have blocked access to the application and assessed the impact of the defect.
"We are currently considering the impact this has had on the security of customer information. We hired an external forensic firm to assure us that there was no significant unauthorized access to our customer information, "First American said in an e-mail statement.
Digitized records, including bank account numbers and bank statements, mortgage and tax records, social security numbers, remittance receipts, and driver license plates, were available to anyone with a web browser without authentication, according to the cancer on security report bit.ly / 2HQUbkj.
The report added that there was no information as to whether fraudsters were aware of the exposure.
The first American financial stocks fell 2.2 percent to $ 54.05 in aftermarket trading.
Reporting by Kanishka Singh in Bengaluru, edited by Rosalba O & Brien