A major accounting and financial services provider disclosed a significant data breach affecting client business records and sensitive corporate documents.
The incident occurred on or about November 12, 2025, but the company only announced the breach publicly on November 22, 2025.
The breach exposed accounting records and legal agreements belonging to SitusAMC clients. The company confirmed that specific corporate data associated with clients’ relationships with the firm was compromised.
Client Accounting Records Compromised in Major Breach
Additionally, data relating to some clients’ customers may have been affected, though the full scope remains under investigation.
SitusAMC stressed that no encrypting malware was involved in the attack, and their services remain fully operational.
The company worked with leading cybersecurity experts and federal law enforcement to contain the incident immediately after detection.
Following the discovery, SitusAMC launched an immediate investigation with third-party security advisors and notified federal law enforcement authorities.
The company implemented several security hardening measures, including credential resets, turning off remote access tools, updating firewall rules, and strengthening security settings across its systems.
“We take this matter and the security of our clients’ information very seriously,” SitusAMC stated in a customer notice.
The company maintained that all systems were secured and services remained uninterrupted throughout the incident. SitusAMC confirmed that it has directly communicated with affected clients about the breach.
The company acknowledged that while certain client data was compromised, the specific nature and extent of the impact remain under investigation.
Clients were instructed to contact the company’s security team at [email protected] for additional information or concerns.
The 10-day gap between discovery (November 12) and public disclosure (November 22) allowed SitusAMC time to investigate the incident and notify law enforcement before disclosing the breach.
The company indicated it would provide additional updates as the investigation progresses and new information becomes available.
This breach highlights the ongoing security risks facing financial services companies and the importance of robust data protection measures for firms handling sensitive accounting and legal documents.
Follow us on Google News, LinkedIn, and X for daily cybersecurity updates. Contact us to feature your stories.
