What happened in the Dave data breach?
Twingate Team
•
Mar 26, 2024
In June 2020, the digital banking app Dave experienced a data breach that exposed a significant amount of personal information. The breach originated on the network of a former business partner, Waydev, an analytics platform used by engineering teams. Additionally, the exposed data was later offered as a free download on a hacking forum by a hacker known as ShinyHunters.
How many accounts were compromised?
The breach impacted data related to approximately 3 million individuals.
What data was leaked?
The data exposed in the breach included dates of birth, email addresses, names, passwords, phone numbers, physical addresses, and social security numbers.
How was Dave hacked?
Unauthorized users gained access to Dave's data systems through the network of a former business partner, Waydev, an analytics platform used by engineering teams.
Dave's solution
Dave took several measures to enhance its security and prevent future incidents. This included securing the platform, notifying affected customers, resetting passwords, and working with law enforcement and cybersecurity firm CrowdStrike to investigate the breach. Furthermore, as part of a settlement, Dave has agreed to adopt and implement additional data security measures for at least five years following the approval of the settlement.
How do I know if I was affected?
Dave notified customers believed to be affected by the breach. If you're a Dave customer and haven't received a notification, you may visit HaveIBeenPwned.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report any unauthorized transactions or changes immediately.
For more specific help and instructions related to Dave's data breach, please contact Dave's support directly.
Where can I go to learn more?
If you want to find more information on the Dave data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Dave data breach?
Twingate Team
•
Mar 26, 2024
In June 2020, the digital banking app Dave experienced a data breach that exposed a significant amount of personal information. The breach originated on the network of a former business partner, Waydev, an analytics platform used by engineering teams. Additionally, the exposed data was later offered as a free download on a hacking forum by a hacker known as ShinyHunters.
How many accounts were compromised?
The breach impacted data related to approximately 3 million individuals.
What data was leaked?
The data exposed in the breach included dates of birth, email addresses, names, passwords, phone numbers, physical addresses, and social security numbers.
How was Dave hacked?
Unauthorized users gained access to Dave's data systems through the network of a former business partner, Waydev, an analytics platform used by engineering teams.
Dave's solution
Dave took several measures to enhance its security and prevent future incidents. This included securing the platform, notifying affected customers, resetting passwords, and working with law enforcement and cybersecurity firm CrowdStrike to investigate the breach. Furthermore, as part of a settlement, Dave has agreed to adopt and implement additional data security measures for at least five years following the approval of the settlement.
How do I know if I was affected?
Dave notified customers believed to be affected by the breach. If you're a Dave customer and haven't received a notification, you may visit HaveIBeenPwned.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report any unauthorized transactions or changes immediately.
For more specific help and instructions related to Dave's data breach, please contact Dave's support directly.
Where can I go to learn more?
If you want to find more information on the Dave data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Dave data breach?
Twingate Team
•
Mar 26, 2024
In June 2020, the digital banking app Dave experienced a data breach that exposed a significant amount of personal information. The breach originated on the network of a former business partner, Waydev, an analytics platform used by engineering teams. Additionally, the exposed data was later offered as a free download on a hacking forum by a hacker known as ShinyHunters.
How many accounts were compromised?
The breach impacted data related to approximately 3 million individuals.
What data was leaked?
The data exposed in the breach included dates of birth, email addresses, names, passwords, phone numbers, physical addresses, and social security numbers.
How was Dave hacked?
Unauthorized users gained access to Dave's data systems through the network of a former business partner, Waydev, an analytics platform used by engineering teams.
Dave's solution
Dave took several measures to enhance its security and prevent future incidents. This included securing the platform, notifying affected customers, resetting passwords, and working with law enforcement and cybersecurity firm CrowdStrike to investigate the breach. Furthermore, as part of a settlement, Dave has agreed to adopt and implement additional data security measures for at least five years following the approval of the settlement.
How do I know if I was affected?
Dave notified customers believed to be affected by the breach. If you're a Dave customer and haven't received a notification, you may visit HaveIBeenPwned.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report any unauthorized transactions or changes immediately.
For more specific help and instructions related to Dave's data breach, please contact Dave's support directly.
Where can I go to learn more?
If you want to find more information on the Dave data breach, check out the following news articles: