California-based mortgage lender LoanDepot was attacked by the ALPHV/BlackCat ransomware gang between January 3-5, 2024. Approximately 16.9 million customers had their personal data exfiltrated, including Social Security numbers, financial account numbers, dates of birth, and contact information. LoanDepot filed an SEC 8-K on January 22, 2024. The gang claimed ransom negotiations included a $6 million demand. Total incident costs approached $27 million. ALPHV was subsequently disrupted by law enforcement in early 2024.