Several major U.S. banks and mortgage lenders are evaluating the potential impact of a recent cyberattack on SitusAMC, a New York–based financial technology firm. The company, which supports more than a thousand commercial and real estate finance institutions, confirmed that it detected a data breach on November 12. According to its statement, hackers accessed corporate information linked to its banking clients, including accounting records and legal documents, though the full extent of the intrusion is still being investigated.

SitusAMC reported that the incident has been contained and that its systems remain operational. Early indications suggest that the attackers focused on stealing data rather than deploying malware that could disrupt or damage systems. Multiple news outlets, including Bloomberg and CNN, have reported that several large financial institutions—among them JPMorgan Chase, Citigroup, and Morgan Stanley—received breach notifications. As an intermediary for banks, pension funds, and state agencies, the firm manages large volumes of sensitive, non-public financial information, processing billions of loan-related documents annually.

Uncertainty remains regarding how much data was taken or how many consumers may ultimately be affected. Representatives from several implicated institutions declined to comment or did not respond to inquiries. The FBI confirmed awareness of the breach and stated that it is working with affected organizations to assess the situation. While officials reported no operational disruptions to banking services, they emphasized ongoing efforts to identify those responsible and protect critical financial infrastructure.