Home > Security > Security News

SitusAMC Cyberattack Exposes Major Bank Client Data, Possibly from JPMorgan Chase, Citi, and Morgan Stanley

Published on November 24, 2025
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Bank, Lock, Security
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google

Key Takeaways

A cyberattack targeting SitusAMC, a key technology vendor for the real estate finance industry, has potentially exposed client data belonging to several major banks. The New York-based company confirmed it was the subject of an attack on November 12, which compromised certain information on its systems. 

Nature of the Bank Client Data Breach

While SitusAMC did not name the affected clients, the New York Times on Saturday reported that customer data from financial giants like JPMorgan Chase, Citi, and Morgan Stanley may have been impacted.

According to SitusAMC, the compromised information includes corporate data related to some clients' dealings with the company, such as accounting documents and legal contracts. 

The firm acknowledged that "data relating to some of our clients' customers may also have been impacted," and said it has notified law enforcement and is actively analyzing the scope of the breach. 

FBI Cyber Investigation and Response

The Federal Bureau of Investigation (FBI) is aware of the incident. In a statement cited by Reuters, FBI Director Kash Patel noted that while the agency is working with affected organizations, it has "identified no operational impact to banking services." 

SitusAMC has also confirmed that the data breach was contained without the involvement of encrypting malware, and its services are fully operational. The incident serves as a critical reminder of the pervasive threat of supply chain attacks and the importance of comprehensive security assessments for all third-party vendors.

A few days back, Senator Ron Wyden, an Oregon Democrat, announced pressing for an investigation into JPMorgan Chase and Epstein in relation to the reporting of more than $1 billion in suspicious transactions.

Also, Salesforce data was stolen via third-party Gainsight, which ShinyHunters claimed and announced “almost 1,000” victims.

Add a Comment
Related
Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond
NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities
Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists
Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program
WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock
SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns 
Most Popular
Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond
NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities
Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists
Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program
WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock
SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns 
Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond
NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities
Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists
Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program
WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock
SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns 

Most Popular
Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond
NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities
Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists
Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program
WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock
SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns 
Top Cybersecurity News of the Week: Impersonation, Vulnerabilities, and AI Rewire The Cyber Playbook as Governments and Industry Respond
NHS Scotland Domain Breached to Host Adult Content and Illegal Sports Streams, Exposing Infrastructure Vulnerabilities
Hackers Hired to Target Android, iCloud of Egyptian, Lebanese Journalists and Activists
Eurail Data Breach Exposes 300,000 Passports, Impacts DiscoverEU Program
WireGuard VPN Developer Faces Update Block Due to Microsoft Account Lock
SaaS Notification Pipeline Abuse, GitHub Phishing Campaigns, and Jira Notification Hijacking Increased, Cisco Talos Warns 

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: