Bank of America Data Breach: Were You Exposed?

A recent security breach may have leaked the personal data of Bank of America customers due to a third-party vendor mishap late last year. 

On December 30, 2024, a document destruction vendor failed to properly secure bank materials while in transit, and some documents were later found out of their containers outside of the financial center to which they were sent.

Lax security measures and negligent mishandling of sensitive, personal data can leave unsuspecting customers vulnerable to identity theft, fraud, and cyberattacks. 

If you believe you or a loved one’s information may have been compromised, don’t hesitate to contact Morgan & Morgan, America’s largest personal injury law firm, for a free case evaluation to take action. You may be entitled to compensation.

Bank of America Data Breach: What Happened

An unnamed document destruction vendor was moving sensitive bank materials, which were discovered out of their boxes and outside of the financial center destination on December 30, 2024.

The unsecured information included customers’ bank account information and could have included their names, email addresses, phone numbers, date of birth, sex, home and business addresses, Social Security information, government identification numbers, and financial information.

Bank of America’s Response

Bank of America sent out a letter to customers that it is monitoring the accounts of those potentially affected and is providing a free two-year membership in an Experian identity theft protection service.

The bank did not specify how many people could have been affected or in which states. It did list contact information for the attorneys general in Massachusetts, New York, Oregon, and Washington, D.C.

Of those four states, Massachusetts has listed online that, as of February 21, two state residents had been caught up in the breach. Their Social Security information, credit and debit card numbers, driver’s licenses, and financial accounts had been breached as a result of the incident. 

What to Do if You’re Affected by the Bank of America Data Breach

If you suspect that you've been affected by the recent Bank of America data breach, here's what you can do to protect your safety and rights:

Enroll in Identity Theft Protection Services

Bank of America is offering complimentary identity theft protection services to potentially affected customers. Take advantage of this service to monitor your personal information for any unauthorized activity.

Monitor Your Accounts Closely

Regularly review your bank statements and credit reports for any suspicious activity. If you notice transactions you don't recognize, contact Bank of America immediately at 800-432-1000.

Place a Fraud Alert on Your Credit Reports

Contact one of the major credit bureaus—Equifax, Experian, or TransUnion—to place a fraud alert on your credit report. This makes it harder for identity thieves to open accounts in your name.

Consider a Credit Freeze

A credit freeze restricts access to your credit report, preventing new accounts from being opened in your name without your consent. This is a strong measure to protect against identity theft.

Report Suspicious Communications

Be cautious of phishing emails or calls pretending to be from Bank of America. Forward suspicious emails or texts to abuse@bankofamerica.com, and report suspicious phone messages by calling 800-432-1000.

Notify Law Enforcement

If you suspect your personal information has been misused, file a report with your local police department. This official documentation can be important for resolving identity theft issues.

Contact Morgan & Morgan

If your data was compromised, you have legal options. You entrusted your private information with Bank of America, and when they fail to uphold that trust, you can take action. Contact us anytime for a free case evaluation to learn more about your legal options.