From a letter sent by Fidelity National Financial to customers on September 23:
Fidelity National Financial, Inc. (“FNF”) is writing to inform you of an incident that may have involved your personal information. FNF is the parent company of Ticor Title Company of Oregon, Ticor Title of Nevada, Inc., Lawyers Title Company, and Lawyers Title of Oregon, LLC, which provide title insurance and real estate settlement services in Oregon, Nevada, and/or California.
In April 2014, certain of our employees were the subject of a targeted phishing attack. As a result of this phishing attack, the attackers obtained username and password information for a small number of our employee email accounts and logged into a subset of those accounts intermittently from April 14 through April 16, 2014. These email accounts are hosted by a recognized third-party service provider. Our investigation revealed no evidence that the attackers penetrated FNF’s internal network or systems. Upon learning of this attack, FNF promptly notified federal law enforcement and began an investigation. FNF worked with a third-party security expert to determine the scope of the attack.
We are writing to inform you that, through our ongoing investigation, we have learned that some of your personal information, including SSN, bank account number, credit/debit card number and driver’s license number, may have been accessible during the attack. The investigation has revealed no evidence that the attackers accessed your personal information, but the investigation also cannot exclude this possibility based on the evidence available.
Read the full letter on the California Attorney General’s website.