While the recent network outage at Ellie Mae Inc. stalled loan closings, the company is assuring customers that no hackers gained access to sensitive information.
On the last day of March, mortgage company clients of the Pleasanton, Calif.-based company were unable to access the Encompass platform — Ellie’s signature product.
Initially, the outage was thought to be the result of a malicious denial-of-service attack because of unusually high demand detected on its servers.
Ellie sought out the assistance of a leading security and cybercrime forensics firm to help it investigate the outage, a statement Monday said.
That review led the company to the conclusion that there was no malice involved.
“Following a thorough review of the incident, with assistance from a leading security and cybercrime forensics firm, Ellie Mae has now concluded that there was no malicious attack on its systems,” the statement said. “Accordingly, the company confirmed there was no breach of client or personal borrower data.”
The review determined that an unexpected surge in web server service requests was triggered by a confluence of factors involving network, hardware, software and demand for service.
Steps taken in response to the incident include expanding capacity and redistributing traffic across its data centers.
Ellie said its IT infrastructure has been operating normally since April 1.
“We sincerely apologize to our clients and any affected borrowers for the unavailability of Encompass services during the outage, and thank them for their patience and understanding as we worked to bring the system back to normal functioning levels,” Ellie Mae Chief Executive Officer and Founder Sig Anderman said in the statement. “We are focused on continuing to enhance our systems to deliver the functionality, reliability and scalability our clients need to run their businesses, remain compliant and originate high quality loans efficiently.”
Ellie is a Mortgage Daily advertiser.
