New American Funding 2025 Data Breach

New American Funding Mortgage Lender Breach (2025): 38K Borrower SSN Records Exposed via Vendor Hack | ObscureIQ
ObscureIQ Breach Intelligence

Classification Tags

Third-Party VendorFinancialDate of BirthEmail AddressFinancial AccountFull NamePhone NumberPhysical AddressSocial Security Number
High SeverityWebsite / service breach

New American Funding Mortgage Lender Breach (2025): 38K Borrower SSN Records Exposed via Vendor Hack

Mortgage lender and home loan servicing company.

Verified by ObscureIQ Intelligence
78/100Breach Risk Index
42Data Value
40Market Recency
304dSince Breach

Breach Intelligence Summary

Entity: New American Funding · Actor: Unknown · Sources: 2 references
Attack: Third-Party Vendor
Profile: Financial institution · Mortgage lending services · Residential lending platform · USA
Timeline: Breach (2025-07-11) · Year (2025)
Exposure: 38K records · 7 fields: Date of Birth, Email Address, Financial Account, Full Name, Phone Number, Physical Address, Social Security Number
Status: Confirmed

Executive Summary

On June 6, 2025, New American Funding was notified that its third-party notary vendor, Mobile Notary Zone (MNZ), had suffered a data-security incident in which an unauthorized actor accessed MNZ systems and exfiltrated mortgage closing documents containing NAF consumer data. NAF stated its own systems were not breached. Between roughly 30,000 and 50,000 individuals were impacted; a dataset parse found about 38,200 phone numbers, 26,800 emails, and 10,800 Social Security numbers, and official disclosures confirm names, addresses, dates of birth, Social Security numbers, and financial account details were involved. No threat actor claimed responsibility. NAF filed with the California AG and began notifying consumers on July 11, 2025.

ObscureIQ assessment: Severe risk of identity theft, loan fraud, wire fraud, and highly targeted mortgage scams. Lending data is especially dangerous because it combines verified identity with major financial transactions.

Breach Impact

Because the exfiltrated MNZ data consisted of mortgage closing packages, the exposure combined Social Security numbers, dates of birth, addresses, and financial account details for borrowers, co-borrowers, and guarantors, an unusually potent bundle for identity theft, loan and wire fraud, and highly targeted mortgage scams. The vendor origin also underscores third-party risk in the lending supply chain.

About New American Funding

New American Funding is a large privately held U.S. mortgage lender and loan servicer headquartered in Tustin, California, originating and servicing residential home loans nationwide. It maintains borrower, co-borrower, and guarantor identity, income, property, and financial records across loan origination and servicing, and works with third-party vendors for closing-related services.

Why They Hold Your Data

Mortgage lenders collect highly sensitive borrower identity, income, employment, credit, property, bank-linkage, and loan-servicing records across residential lending workflows.

Recent Developments

The exposure did not stem from a direct compromise of New American Funding but from its third-party notary vendor, Mobile Notary Zone (MNZ), which was breached in mid-2025. NAF completed its record review by June 26, 2025, filed with the California Attorney General, began notifying consumers on July 11, 2025, terminated the MNZ relationship, and offered credit monitoring; class-action investigations followed.

Data Points Exposed

7 verified field types
Date of Birth High
Email Address
Financial Account
Full Name High
Phone Number
Physical Address High
Social Security Number Critical

Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.

Exploitation & Downstream Threats

Threat Activity:Critical
Primary downstream threats:
  • Identity theft and synthetic identity construction using SSN and DOB
  • Mortgage/wire fraud and fraudulent loan applications using financial account details
  • Targeted phishing and vishing impersonating the lender or title/closing agents
  • SIM swap attacks where phone numbers are present
  • Doxxing and physical targeting from exposed home addresses
Threat vectors:
  • Full identity theft & synthetic identity fraud
  • Mortgage & wire fraud
  • Loan & credit-application fraud
  • Name-based social engineering
  • SIM swapping, vishing & SMS phishing
  • Physical stalking, mail fraud & identity verification

Recommended Actions

If you believe your information may be included:

Protect Your ID Documents
Government-ID exposure enables document fraud — monitor and report misuse.
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.

Frequently Asked Questions

What happened in the New American Funding breach?

On June 6, 2025, New American Funding was notified that its third-party notary vendor, Mobile Notary Zone (MNZ), had suffered a data-security incident in which an unauthorized actor accessed MNZ systems and exfiltrated mortgage closing documents containing NAF consumer data. NAF stated its own…

What data was exposed?

Verified fields include Date of Birth, Email Address, Financial Account, Full Name, Phone Number, Physical Address, Social Security Number.

What should I do if I was affected?

Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.

Sources & References

Every claim on this page is traceable. This breach draws on:

Breach Index
DataBreach.com
Record & field corroboration
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Risk Index scoring & downstream-threat assessment

Protect Yourself

Check If You're Affected

Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.

Get Free Breach Alerts

Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.

High-Risk? Get an Exposure Audit

Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.

Request Consultation