AmeriCU Mortgage Company CyberSecurity Posture

americu.com
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

Since 1993 AmeriCU Mortgage has been recognized as a leading provider of mortgage services to Credit Union members nationwide. We offer competitive mortgage products to meet the specific needs of your members in our rapidly changing marketplace. AmeriCU strives to provide superior member service, as well as innovative marketing and compliance support to our credit union partners through a variety of relationship options. AmeriCU Mortgage is a privately held mortgage banking company, providing residential mortgage financing through the Federal National Mortgage Association (FNMA), the Federal Home Loan Mortgage Corporation (FHLMC), the Government National Mortgage Association (GNMA) and other private investors. AmeriCU is a division of Towne Mortgage Company. Programs available only to qualified borrowers. Programs subject to change without notice. Underwriting terms and conditions apply. Some restrictions apply.The information provided on this website is for the dissemination to and for the use of real estate and financial business entities only and is not an advertisement for the extension of credit to consumers. Towne’s AZ License #: 0942579, Towne’s CA License #: 41DBO-45117. Licensed by the Department of Financial Protection and Innovation (DFPI) under the California Residential Mortgage Lending Act. GA License #: 12701. IL License #: MB.6760710. Towne’s MA Mortgage Lender License #ML3028. Rhode Island Licensed Lender. Licensed by the N.J. Department of Banking and Insurance. Licensed to originate loans in AZ, CA, CT, MA, NE, NV, UT, VT under Towne Mortgage Company only. Link to http://nmlsconsumeraccess.org Corporate disclosures: https://www.americu.com/disclosures/ Privacy policy: https://www.americu.com/privacy-policy/ State licensing: https://www.americu.com/licensing/

AmeriCU Mortgage A.I CyberSecurity Scoring

AmeriCU Mortgage

Company Details

Linkedin ID:

americu-mortgage

Website:

http://www.americu.com

Employees number:

49

Number of followers:

372

NAICS:

52

Industry Type:

Financial Services

Homepage:

americu.com

IP Addresses:

Scan still pending

Company ID:

AME_2012785

Scan Status:

In-progress

AI scoreAmeriCU Mortgage Risk Score (AI oriented)

Between 600 and 649

https://images.rankiteo.com/companyimages/americu-mortgage.jpeg
AmeriCU Mortgage Financial Services
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreAmeriCU Mortgage Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/americu-mortgage.jpeg
AmeriCU Mortgage Financial Services
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

AmeriCU Mortgage

Poor
Current Score
643
Caa (Poor)
01000
2 incidents
-125.0 avg impact

Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.

DECEMBER 2025
643
NOVEMBER 2025
642
OCTOBER 2025
641
SEPTEMBER 2025
638
AUGUST 2025
636
JULY 2025
634
JUNE 2025
755
Ransomware
07 Jun 2025 • Towne Mortgage Company
Towne Mortgage Company Ransomware Attack and Data Breach

Towne Mortgage Company, a full-service mortgage lender, suffered a **ransomware attack** by the **BlackByte ransomware group**, leading to a **major data breach**. Unauthorized access to the company’s network was detected on **June 7, 2025**, and a forensic investigation later confirmed that **customer data files were copied** from its systems. The breach was publicly disclosed on **November 14, 2025**, after BlackByte published **sample stolen data** on its dark web portal on **July 30, 2025**, heightening risks of **identity theft and fraud**.The compromised data included **personal information of customers**, exposing them to potential financial and reputational harm. In response, Towne Mortgage offered **24-month credit monitoring, fraud alerts, and security freeze guidance** to affected individuals. The attack underscores the severe consequences of ransomware-driven breaches, where **data exfiltration and extortion** compound the damage beyond mere encryption.The incident highlights the **criminal intent** behind the attack, with the threat actor actively **leaking sensitive data** to pressure the company. Customers were advised to monitor financial accounts and credit reports for unauthorized activity, reflecting the **long-term risks** posed by such breaches.

630
critical -125
AME1192511111525
Incident Details -
Type
ransomware data breach
Motivation
financial gain data theft
Impact
Brand Reputation Impact: high (potential identity theft and fraud risks) Identity Theft Risk: high
Response
Cyberscout (TransUnion) forensic investigation manual review of compromised data notification to affected individuals 24-month credit monitoring (Cyberscout) single bureau credit reports credit score services fraud assistance and guidance notification letters to affected individuals public disclosure to Massachusetts Attorney General advisories on credit monitoring enrollment (90-day window) guidance on fraud alerts/security freezes with Equifax, Experian, and TransUnion
Data Breach
personal information Sensitivity Of Data: high (potential for identity theft/fraud)
Regulatory Compliance
Massachusetts Attorney General
Investigation Status
completed (forensic investigation and manual review conducted)
Customer Advisories
enroll in 24-month credit monitoring via Cyberscout place fraud alerts/security freezes with credit bureaus monitor financial accounts for unauthorized activity
Stakeholder Advisories
credit monitoring enrollment (within 90 days) fraud alert/security freeze guidance regular review of financial statements and credit reports
Initial Access Broker
customer personal data
Post Incident Analysis
credit monitoring services for affected individuals fraud prevention guidance
References
Blog URL Source URL
MAY 2025
755
APRIL 2025
755
MARCH 2025
755
FEBRUARY 2025
755
JANUARY 2025
755
JUNE 1982
755
Ransomware
16 Jun 1982 • Towne Mortgage Company
Towne Mortgage Company Data Breach and Ransomware Attack (2025)

Towne Mortgage Company, a full-service mortgage lender operating since 1982, suffered a **ransomware attack** in **June 2025** by the **BlackByte** group. The breach exposed **sensitive personally identifiable information (PII)** of customers, with evidence of data being copied from the company’s network. BlackByte later **claimed responsibility on the dark web** in July 2025, even releasing sample data. The incident was formally disclosed to the **Massachusetts Attorney General’s office** in November 2025. The breach impacted individuals across **44 states**, where Towne Mortgage originates loans, and **47 states**, where it services them. Affected parties were notified and offered **24-month credit monitoring**, with warnings of potential **identity theft, fraud, and financial harm**. Legal firms are investigating the incident for **compensation claims**, indicating severe reputational and financial risks for the company and its customers. The attack disrupted trust in Towne Mortgage’s ability to safeguard customer data, with long-term consequences for its operations and customer retention. The exposure of PII—such as financial and personal details—heightens risks of **fraudulent activity, phishing, and unauthorized account access** for victims.

630
critical -125
AME3692536111525
Incident Details -
Type
Data Breach Ransomware Attack
Attack Vector
Ransomware (BlackByte)
Motivation
Financial (likely ransom demand and/or data theft for resale)
Impact
Brand Reputation Impact: High (potential loss of trust among customers, especially in communities relying on their services) Legal Liabilities: Potential (class action lawsuits and regulatory scrutiny) Identity Theft Risk: High (PII exposed)
Response
Communication Strategy: Notification letters sent to affected individuals; public disclosure via Massachusetts Attorney General's office; offer of 24-month credit monitoring (Cyberscout).
Data Breach
Personally Identifiable Information (PII) Sensitivity Of Data: High
Regulatory Compliance
Legal Actions: Potential class action lawsuits (investigation ongoing by Shamis & Gentile P.A.) Regulatory Notifications: Massachusetts Attorney General's office (notified on 2025-11-14)
Recommendations
Enroll in the provided 24-month credit monitoring service (Cyberscout). Place a fraud alert on credit files via Equifax, Experian, or TransUnion. Consider placing a security freeze on credit reports. Regularly monitor financial accounts and credit reports for suspicious activity. Review free credit reports from all three bureaus for errors or unauthorized activity.
Investigation Status
Ongoing (class action investigation by Shamis & Gentile P.A.)
Customer Advisories
Notification letters with enrollment instructions for credit monitoring (Cyberscout). Guidance on placing fraud alerts and security freezes. Advice to monitor financial accounts and credit reports.
References
Blog URL Source URL

Frequently Asked Questions

According to Rankiteo, the current A.I.-based Cyber Score for AmeriCU Mortgage is 643, which corresponds to a Poor rating.

According to Rankiteo, the A.I. Rankiteo Cyber Score for November 2025 was 642.

According to Rankiteo, the A.I. Rankiteo Cyber Score for October 2025 was 641.

According to Rankiteo, the A.I. Rankiteo Cyber Score for September 2025 was 638.

According to Rankiteo, the A.I. Rankiteo Cyber Score for August 2025 was 636.

According to Rankiteo, the A.I. Rankiteo Cyber Score for July 2025 was 634.

According to Rankiteo, the A.I. Rankiteo Cyber Score for June 2025 was 755.

According to Rankiteo, the A.I. Rankiteo Cyber Score for May 2025 was 755.

According to Rankiteo, the A.I. Rankiteo Cyber Score for April 2025 was 755.

According to Rankiteo, the A.I. Rankiteo Cyber Score for March 2025 was 755.

According to Rankiteo, the A.I. Rankiteo Cyber Score for February 2025 was 755.

According to Rankiteo, the A.I. Rankiteo Cyber Score for January 2025 was 755.

Over the past 12 months, the average per-incident point impact on AmeriCU Mortgage’s A.I Rankiteo Cyber Score has been -125.0 points.

You can access AmeriCU Mortgage’s cyber incident details on Rankiteo by visiting the following link: https://www.rankiteo.com/company/americu-mortgage.

You can find the summary of the A.I Rankiteo Risk Scoring methodology on Rankiteo by visiting the following link: Rankiteo Algorithm.

You can view AmeriCU Mortgage’s profile page on Rankiteo by visiting the following link: https://www.rankiteo.com/company/americu-mortgage.

With scores of 18.5/20 from OpenAI ChatGPT, 20/20 from Mistral AI, and 17/20 from Claude AI, the A.I. Rankiteo Risk Scoring methodology is validated as a market leader.