KeyBank Data Breach Class Action

At Console & Associates, our data breach lawyers are closely examining the recent KeyBank data breach. This data breach was disclosed following a cyber security incident at Wong Fleming, P.C., a third-party vendor of KeyBank, potentially exposing sensitive personal identifiable information of KeyBank customers.

What Happened?

A recent report from the Massachusetts Attorney General's office states that the KeyBank data breach occurred due to unauthorized remote access to Wong Fleming's network. Wong Fleming, a law firm providing asset recovery services for KeyBank, discovered the security incident on January 16, 2025, and notified KeyBank. While KeyBank's systems were not directly compromised, the breach at Wong Fleming exposed files containing confidential KeyBank customer information. The types of exposed sensitive data include:

• Full names
• Addresses
• Birthdates
• Social Security numbers
• Phone numbers
• Email addresses
• Driver's license numbers
• Account numbers

Data breach letters were sent out by KeyBank on February 11, 2025, informing affected individuals about the nature of the incident and compromised data.

Steps To Take If You Were Affected By A Data Breach

1. Monitor all accounts and credit reports closely
   1. Set up alerts for suspicious activity
   2. Review all financial statements thoroughly
   3. Request free credit reports and examine them for unauthorized entries
      
      
2. Consider freezing your credit
   1. Contact all three major credit bureaus to place a freeze
   2. Understand this prevents new accounts from being opened in your name
   3. Remember to temporarily lift the freeze when applying for legitimate credit
      
      
3. Look out for phishing attempts using information from the KeyBank data breach
   1. Be wary of unexpected emails or messages claiming to be from KeyBank
   2. Don't click on suspicious links or download unexpected attachments
   3. Verify all communications through official channels
      
      
4. Change passwords for affected accounts
   1. Create strong, unique passwords for each account
   2. Use a combination of letters, numbers, and special characters
   3. Consider using a password manager for better security
      
      
5. Enable two-factor authentication where possible
   1. Add this extra layer of security to all important accounts
   2. Use authenticator apps rather than SMS when available
   3. Keep backup codes in a secure location

For more detailed guidance, explore our “Guide for Victims of a Data Breach” to better understand measures you can take to protect yourself after a data breach.

KeyBank Overview

Operating as a subsidiary of KeyCorp, KeyBank stands as a significant regional financial institution headquartered in Cleveland, Ohio. The bank maintains an extensive operational network across the United States, combining traditional branch banking with digital services delivery. With a workforce of 17,000 employees and annual revenue of $6 billion, KeyBank provides comprehensive financial services spanning retail banking, commercial lending, and investment management. The vendor involved in this incident, Wong Fleming, P.C., functions as a multi-practice law firm based in Princeton, New Jersey. With 100 employees and $24 million in annual revenue, Wong Fleming specializes in asset recovery, commercial litigation, and corporate legal services, serving clients both domestically and internationally.

KeyBank Data Breach Victims Have Rights - Don’t Wait to Act

How do you know that you were affected by the KeyBank data breach? Usually victims receive a NOTICE OF DATA BREACH in the mail, but the impact of a breach can be felt long before notices are sent to those affected. This can be in the form of fraudulent financial activity and other forms of identity theft.

If you believe you were affected, we encourage you to reach out to our data breach law firm for legal assistance through a no-cost consultation about your situation. We will review your eligibility to file a data breach class action lawsuit and discuss your legal rights and any compensation that may be available to you.

Complete our confidential contact form below and a member of our legal team will be in touch.