In June 2020, Dave, a digital banking app, suffered a data breach. 7.5 million rows of data were leaked to the public on a hacking forum. The breach exposed individuals’ Personal Identifiable Information (PII) such as names, dates of birth, encrypted social security numbers and passwords.
UMBC’s Division of Information Technology (DoIT) has been notified that over 20 UMBC accounts might have been affected by this breach.
The individuals who have been affected by the data breach were notified via their UMBC email and/or their alternate emails. If you do not have an alternate email listed on your UMBC account, we suggest that you create one, preferably different from your UMBC email account.
To link an alternate email account to your UMBC account follow the instructions below:
Login to your myUMBC account: http://my.umbc.edu/account
Click Account security setup
At the top of the page, enter your alternate email address
Scroll down to the bottom of the page and click Update my security settings
If you have a Dave account we suggest that you contact them to see if your information has been leaked.
The data about Dave was provided to the breach notification service Have I Been Pwned (HIBP) by dehashed.com.
For more information on Dave data breach visit:
https://www.tomsguide.com/news/dave-data-breach
If you have any questions or concerns email us: security@umbc.edu
_________________________________________________________________________
Receive any suspicious emails?
Forward it to security@umbc.edu along with the email headers. Instructions for doing so can be found at the UMBC support wiki: https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970.