Hundreds of thousands of homeowners who trusted Lakeview Loan Servicing with their mortgage payments may be owed money, and the window to collect it is closing fast. A $26 million class action settlement is paying affected borrowers up to $5,000 each, but the claim deadline is June 22, 2026. Anyone who misses it will almost certainly walk away with nothing.
The settlement stems from a 2021 data breach that exposed Social Security numbers, bank account details, and other sensitive records belonging to Lakeview borrowers. The company took nearly five months to notify customers after hackers first entered its systems. Here is what happened, who qualifies, and exactly how to file before time runs out.
What happened in the Lakeview data breach
Lakeview Loan Servicing is a major nonbank mortgage servicer that handles payments and escrow accounts for a large share of U.S. homeowners. According to a breach notification filed with the Maine Attorney General’s office, unauthorized individuals accessed Lakeview’s systems between October 27 and December 7, 2021.
Lakeview did not detect the intrusion until January 31, 2022, nearly two months after the unauthorized access ended. Consumer notification letters did not go out until March 18, 2022. That means affected borrowers went roughly five months from the start of the breach before learning their data had been compromised.
The Maine AG’s compiled reporting data and statewide breach spreadsheet both record the incident, confirming the date ranges and identifying Lakeview as the reporting entity. The exposed information reportedly included names, addresses, Social Security numbers, financial account details, and other mortgage-related records, though the specific data categories varied by individual.
How the $26 million settlement works
Plaintiffs in the resulting class action, filed as Herrera-Zamora v. Lakeview Loan Servicing, LLC, No. 3:22-cv-01427 (M.D. Tenn.), alleged that Lakeview failed to implement adequate cybersecurity protections and then waited too long to warn customers. Rather than go to trial, the parties reached a $26 million settlement with a per-claimant cap of up to $5,000, according to the court-approved settlement agreement.
The fund is structured in tiers:
- Documented losses (up to $5,000): Borrowers who can show out-of-pocket costs tied to the breach, such as credit monitoring fees, bank charges from fraudulent transactions, or time spent resolving identity theft, are eligible for reimbursement at the top end of the scale.
- Base payments (no receipts required): Borrowers who were affected but cannot document specific financial harm may still qualify for a smaller cash payment. The exact amount will depend on how many valid claims are filed against the fund.
That participation rate matters more than most people realize. Data breach settlements routinely see claim rates in the single digits, according to analyses by the Federal Trade Commission and consumer law researchers. If that pattern holds here, per-person payouts could be relatively generous for those who bother to file. If an unusually high number of borrowers submit claims, the fund gets divided more thinly. Court-approved attorneys’ fees and administrative costs will also be deducted before money reaches claimants.
How to file before the June 22, 2026 deadline
After June 22, eligible borrowers who have not submitted a claim will forfeit their right to any payment. The claims process is managed by a court-appointed administrator, and claims are filed through the dedicated settlement website at LakeviewMortgageSettlement.com. Here is what the process looks like:
- Confirm your eligibility. You should have received a notification letter from Lakeview in 2022 or a settlement notice from the claims administrator. If you had a mortgage serviced by Lakeview during the breach window (October through December 2021), you may be part of the class even if you do not recall getting a letter.
- Gather your documentation. If you are claiming out-of-pocket expenses, collect receipts for credit monitoring subscriptions, bank statements showing unauthorized charges, police reports, FTC identity theft affidavits, and any records of time spent dealing with fraud.
- Submit your claim online. Visit the settlement website and enter the unique claim ID printed on your settlement notice. If you have lost that notice, the site includes a lookup tool, or you can call the claims administrator’s toll-free number listed on the portal. Filing is free.
- Keep copies of everything. Save a confirmation number or screenshot after you submit. Payouts will not arrive immediately; distribution typically happens months after the deadline once all claims are reviewed.
Borrowers who experienced identity theft or fraudulent activity they can directly connect to the Lakeview breach will have the strongest claims for payments near the $5,000 cap. But even those without documented losses should consider filing. The base payment requires minimal paperwork, and the only cost is a few minutes of your time.
Why the five-month notification gap matters
The delay between the start of the breach and consumer notification was central to the plaintiffs’ case, and it is worth understanding why it still matters now.
Mortgage servicing records can contain some of the most sensitive data a person has: Social Security numbers, bank account details, loan balances, property addresses, and tax information. Every day that passes without notification is a day the affected borrower cannot freeze their credit, flag their accounts, or take other protective steps. In Lakeview’s case, borrowers were exposed for months without knowing it.
“I didn’t find out until I got the letter in March, and by then someone had already tried to open a credit card in my name,” one affected borrower wrote in a public comment submitted during the settlement approval process. That kind of experience was common among class members and underscored the plaintiffs’ argument that faster disclosure could have limited the damage.
For some homeowners, the consequences may still be unfolding in May or June 2026. Mortgage-related data can be used to file fraudulent tax returns, open new lines of credit, or attempt to redirect escrow disbursements. These types of fraud can surface years after the initial breach, which is part of what makes a fixed claims deadline so frustrating for borrowers who have not yet discovered whether their information was misused.
If you have not already done so, placing a free credit freeze with all three major bureaus (Equifax, Experian, and TransUnion) remains one of the most effective steps you can take, regardless of whether you file a claim.
What to know if you already used Lakeview’s free credit monitoring
After the breach, Lakeview offered affected borrowers complimentary credit monitoring services. Enrolling in that program does not disqualify you from the settlement. The two are separate: the monitoring was Lakeview’s voluntary response to the breach, while the settlement fund was created through litigation. You can file a claim even if you accepted the free monitoring, and you can file a claim even if you declined it.
However, if you paid out of pocket for your own credit monitoring because you did not trust or did not receive Lakeview’s offer, those costs may count as documented losses eligible for reimbursement under the settlement’s higher payment tier.
How this settlement compares to other mortgage-servicer breaches
Lakeview is not the only mortgage servicer to face litigation over a data breach in recent years. Mr. Cooper (formerly Nationstar Mortgage) disclosed a breach in late 2023 that affected roughly 14.7 million customers, and LoanDepot reported a ransomware attack in early 2024 that compromised data for approximately 16.6 million individuals. Both companies faced class action lawsuits. The Lakeview settlement, at $26 million, is sizable for the industry, though the final per-claimant value will depend on how many borrowers actually file.
What sets the Lakeview case apart is the length of the notification delay. While federal and state regulators have pushed for faster breach disclosure, including through updated rules from the SEC and stricter state notification statutes, the Lakeview breach predated many of those reforms. The case became one of the examples consumer advocates cited when arguing that mortgage servicers needed tighter oversight of their cybersecurity practices.
What happens after you file and what to expect by late 2026
Once the June 22 deadline passes, the claims administrator will review all submissions, verify eligibility, and calculate payment amounts based on the total number of valid claims. That review process can take several months. Claimants should not expect checks or direct deposits immediately.
If the court approves the final distribution and no appeals delay the process, payments will be issued to eligible borrowers after the review is complete. The settlement notice and claims portal will post updates on the timeline as it develops.
For affected homeowners, the calculus is simple: filing is free, takes minutes, and preserves your right to a share of $26 million set aside specifically because Lakeview failed to protect your data. The only guaranteed way to get nothing is to let June 22 pass without submitting a claim.
David M. Keller is a finance writer based in Columbus, Ohio, covering personal finance and consumer-focused economic topics. He earned his degree in journalism from Ohio University and began his career reporting on local business and economic trends for a regional media outlet. Since then, he has contributed to a variety of online publications, focusing on clear, practical coverage of topics such as cost of living, debt, and everyday financial decision-making.
