Flagstar Bank A.I CyberSecurity Scoring
Flagstar Bank
Company Information
Website:http://www.flagstar.com
Employees number:7,196
Number of followers:53,830
NAICS:52211
Industry Type:Banking
Homepage:flagstar.com
Flagstar Bank Risk Score (AI oriented)
Between 600 and 649
Flagstar BankBanking
Updated:
02/04/2026
02/04/2026
636/1000
Poor
Caa
Flagstar Bank Global Score (TPRM)
xxxx
Flagstar BankBanking
Score locked

Flagstar BankPoor
Current Score
636Caa (POOR)
01000
5 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
648
JUNE 2026
647
MAY 2026
643
APRIL 2026
641
MARCH 2026
632
FEBRUARY 2026
631
JANUARY 2026
629
DECEMBER 2025
625
NOVEMBER 2025
624
OCTOBER 2025
622
SEPTEMBER 2025
618
AUGUST 2025
615
OCTOBER 2023
610
Breach
01 Oct 2023 • Flagstar Bank
Flagstar Bank
Flagstar Bank Data Breach
525
HIGH-85
FLA2323151023
Flagstar Bank is informing 837,390 US clients that threat actors breached the third-party service provider Fiserv, exposing their personal information.
According to the data breach notification given to the impacted clients, the event involved vulnerabilities found in MOVEit Transfer, a file transfer programme that our vendor uses to support services it offers to Flagstar and its connected institutions.
The banking institution emphasised that the MOVEit bug did not affect any of Flagstar Bank's systems or its capacity to provide customers with services.
Flagstar initiated an inquiry into the event to ascertain the extent of the security incident as soon as it was made aware of the data breach.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
MAY 2023
602
Vulnerability
27 May 2023 • Flagstar Bank
Flagstar Bank, N.A.
Flagstar Bank Data Breach
596
LOW-6
FLA825072625
On December 27, 2023, the Maine Office of the Attorney General reported that Flagstar Bank, N.A., experienced a data breach involving its vendor, Fidelity Information Services, LLC (FIS), due to vulnerabilities in MOVEit Transfer. The breach occurred between May 27 and May 31, 2023, affecting 25,891 individuals, including 22 residents of Rhode Island, with personal information possibly compromised. Identity theft protection services through Kroll were offered for two years.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
DECEMBER 2021
617
Breach
01 Dec 2021 • Flagstar Bank
Flagstar Bank, FSB
Flagstar Bank Data Breach
531
CRITICAL-86
FLA240072525
The Maine Office of the Attorney General reported a data breach involving Flagstar Bank on June 17, 2022. The breach occurred between December 3 and December 4, 2021, affected 1,547,169 individuals in total, and involved unauthorized access to personal information, including Social Security Numbers. Identity theft protection services were offered for two years through Kroll.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
JUNE 2021
770
Breach
16 Jun 2021 • Flagstar Bank
Flagstar Bank
Flagstar Bank Data Breaches (2021-2022) and Regulatory Settlements
600
CRITICAL-170
FLA3192831110725
Flagstar Bank, a New York-based mortgage lender, faced severe financial and reputational repercussions due to two major data breaches in 2021 and 2022, which exposed the personal information of millions of customers. The fallout included a $31.5 million settlement in multiple class-action lawsuits filed by affected former customers, alongside an additional $3.5 million fine imposed by the SEC for misleading public statements regarding the breaches. The incidents not only led to substantial monetary losses but also eroded trust among customers and regulators. The breaches occurred before Flagstar sold its mortgage servicing business to Mr. Cooper in 2024, yet the legacy of the attacks continues to impact its standing in the financial sector. The exposed data likely included sensitive personal and financial details, amplifying the severity of the breach and its long-term consequences for both the company and its clients.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
JANUARY 2021
772
Vulnerability
20 Jan 2021 • Flagstar Bank
Flagstar Bank, FSB
Flagstar Bank Data Breach
769
MEDIUM-3
FLA245080525
On March 15, 2021, the California Office of the Attorney General reported a data breach involving Flagstar Bank, which occurred on January 20, 2021. The breach was due to an exploited vulnerability in the Accellion file sharing platform, affecting an unspecified number of individuals' personal information.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Flagstar Bank ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in June 2026 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in May 2026 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in April 2026 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in March 2026 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in February 2026 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in January 2026 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in December 2025 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in November 2025 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in October 2025 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in September 2025 ??
What was Flagstar Bank's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Flagstar Bank's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Flagstar Bank ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Flagstar Bank's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?