---
schema_version: "secwatch.filing_event.v1"
accession: "0000950170-24-004247"
form_type: "8-K/A"
ticker: "FAF"
cik: "0001472787"
company_name: "First American Financial Corp"
filed_at: "2024-01-12T23:59:59+00:00"
generated_at: "2026-06-06T23:51:31.326234+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.7
calibrated_materiality_score: 0.7
confidence: "high"
source: SEC EDGAR
---

# First American provides update: cyber incident delayed Q4 transactions, lost revenue to Q1 2024

## Summary
- Company isolated IT systems on Dec 20, 2023; contained incident and resumed business operations.
- Q4 2023 transactions delayed to Q1 2024, shifting revenue recognition; some transactions lost to competitors.
- One-time expenses incurred in Q4 2023 as a result of the cybersecurity incident.
- Incident expected to materially impact Q4 2023 results, but not overall financial condition or ongoing operations.

## SEC filing metadata
- accession: 0000950170-24-004247
- form_type: 8-K/A
- ticker: FAF
- cik: 0001472787
- company_name: First American Financial Corp
- filed_at: 2024-01-12T23:59:59+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.7
- calibrated_materiality_score: 0.7
- confidence: high
- sec_items: 1.05, 9.01
- EDGAR index: https://www.sec.gov/Archives/edgar/data/1472787/000095017024004247/0000950170-24-004247-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/1472787/000095017024004247/faf-20231220.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0000950170-24-004247
- JSON: https://secwatch.observer/filing/0000950170-24-004247.json
- Plain text: https://secwatch.observer/filing/0000950170-24-004247.txt

## Key facts
- Cybersecurity Incidents
  First American Financial Corp disclosed a cybersecurity incident: unauthorized activity on certain of its information technology systems. Impact: material impact on Q4 2023 results of operations; revenue delayed from Q4 2023 to Q1 2024; loss of revenue from transactions moved to other providers; one-time expenses incurred. Materiality is still being assessed.
  - Nature: unauthorized activity on certain of its information technology systems
  - Impact: material impact on Q4 2023 results of operations; revenue delayed from Q4 2023 to Q1 2024; loss of revenue from transactions moved to other providers; one-time expenses incurred
  - Materiality: assessing
  source text: As disclosed in the Original Report, the Company identified unauthorized activity on certain of its information technology systems. Upon detection, the Company acted to contain, assess and remediate the incident.
  evidence_url: https://www.sec.gov/Archives/edgar/data/1472787/000095017024004247/0000950170-24-004247-index.htm

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.