Ransomware Compromise at American Lending Center Exposes PII of 123,000 Individuals
Summary
Hide ▲
Show ▼
A ransomware attack against American Lending Center (ALC), a California-based non-bank lender managing a $3 billion portfolio of government-guaranteed small business loans, led to the compromise of internal networks and potential theft of personally identifiable information (PII) for 123,000 individuals. The incident was detected in July 2025, and a forensic investigation completed on April 8, 2026, confirmed unauthorized access and execution of ransomware. Compromised data includes names, dates of birth, and Social Security numbers, though ALC reports no evidence of subsequent misuse as of the disclosure.
Timeline
-
15.05.2026 14:06 1 articles · 2h ago
Ransomware attack on American Lending Center leads to PII exposure for 123,000 individuals
A ransomware attack detected in July 2025 compromised internal networks at American Lending Center (ALC), a California-based non-bank lender managing a $3 billion portfolio of government-guaranteed small business loans. The forensic investigation, completed on April 8, 2026, confirmed that threat actors accessed files containing personal identifying information, including names, dates of birth, and Social Security numbers for 123,000 individuals. ALC has reported no evidence of misuse of the compromised data as of the disclosure.
Show sources
- American Lending Center Data Breach Affects 123,000 Individuals — www.securityweek.com — 15.05.2026 14:06
Information Snippets
-
American Lending Center (ALC) is a California-based non-bank lender with a $3 billion portfolio focused on government-guaranteed small business loans.
First reported: 15.05.2026 14:061 source, 1 articleShow sources
- American Lending Center Data Breach Affects 123,000 Individuals — www.securityweek.com — 15.05.2026 14:06
-
A ransomware attack was detected in July 2025, compromising internal networks and accessing files containing personal identifying and sensitive information.
First reported: 15.05.2026 14:061 source, 1 articleShow sources
- American Lending Center Data Breach Affects 123,000 Individuals — www.securityweek.com — 15.05.2026 14:06
-
Forensic investigation completed on April 8, 2026, confirmed the breach scope and that threat actors accessed sensitive data.
First reported: 15.05.2026 14:061 source, 1 articleShow sources
- American Lending Center Data Breach Affects 123,000 Individuals — www.securityweek.com — 15.05.2026 14:06
-
Potentially compromised data includes names, dates of birth, and Social Security numbers for 123,000 individuals.
First reported: 15.05.2026 14:061 source, 1 articleShow sources
- American Lending Center Data Breach Affects 123,000 Individuals — www.securityweek.com — 15.05.2026 14:06
-
ALC has not identified any evidence of misuse of the compromised information as of the notification.
First reported: 15.05.2026 14:061 source, 1 articleShow sources
- American Lending Center Data Breach Affects 123,000 Individuals — www.securityweek.com — 15.05.2026 14:06
-
No known ransomware group has claimed responsibility for the attack, which may indicate a paid ransom or targeting by a group without a public leak site.
First reported: 15.05.2026 14:061 source, 1 articleShow sources
- American Lending Center Data Breach Affects 123,000 Individuals — www.securityweek.com — 15.05.2026 14:06