Towne Mortgage Company, a full-service mortgage lender, suffered a ransomware attack by the BlackByte ransomware group, leading to a major data breach. Unauthorized access to the company’s network was detected on June 7, 2025, and a forensic investigation later confirmed that customer data files were copied from its systems. The breach was publicly disclosed on November 14, 2025, after BlackByte published sample stolen data on its dark web portal on July 30, 2025, heightening risks of identity theft and fraud.The compromised data included personal information of customers, exposing them to potential financial and reputational harm. In response, Towne Mortgage offered 24-month credit monitoring, fraud alerts, and security freeze guidance to affected individuals. The attack underscores the severe consequences of ransomware-driven breaches, where data exfiltration and extortion compound the damage beyond mere encryption.The incident highlights the criminal intent behind the attack, with the threat actor actively leaking sensitive data to pressure the company. Customers were advised to monitor financial accounts and credit reports for unauthorized activity, reflecting the long-term risks posed by such breaches.