In July 2025, American Lending Center detected a ransomware attack that compromised its internal network and accessed files potentially containing sensitive personal information of more than 123,000 individuals. The breach involved exposure of names, dates of birth, and Social Security numbers. A forensic investigation concluded in April 2026 found no evidence that the stolen information has been misused. No known ransomware group has claimed responsibility, suggesting either a ransom payment or an attack by a group without a public leak site. The organization manages a $3 billion portfolio of government-guaranteed small business loans and has notified impacted individuals and regulatory authorities.

The breach exposed sensitive personally identifiable information (PII) including names, dates of birth, and Social Security numbers of over 123,000 individuals. Such exposure can increase the risk of identity theft and fraud for affected individuals. However, the forensic investigation found no evidence of misuse of the compromised data to date. The attack disrupted ALC's internal network and involved ransomware execution, but no public ransom demand or data leak has been confirmed.

No specific patch or remediation is applicable as this is a ransomware incident rather than a software vulnerability. The organization has completed a forensic investigation and notified affected individuals and regulatory bodies. There is no evidence of data misuse, and no ransomware group has claimed responsibility. Affected individuals should be advised to monitor their personal accounts and credit reports for suspicious activity. Organizations should ensure robust ransomware defenses and incident response plans are in place to prevent and respond to similar attacks.