How many people were affected by the FinWise Bank breach?

The FinWise Bank data breach exposed the personal information of 689,000 individuals, making it a significant cybersecurity incident affecting hundreds of thousands of customers.

What caused the FinWise Bank data breach?

The breach was caused by an insider threat involving a former FinWise employee who inappropriately accessed FinWise data after the end of their employment. The former employee specifically accessed American First Finance (AFF) data.

What is the relationship between FinWise Bank and American First Finance?

FinWise Bank contracts with American First Finance (AFF) to offer installment loans to consumers. FinWise serves as the lender while AFF acts as the technology provider in this business partnership.

What is FinWise Bank doing to help affected customers?

FinWise Bank is offering 12 months of free credit monitoring and identity theft protection services to individuals affected by the data breach. This service helps customers monitor their credit reports and detect potential identity theft.

Why hasn't FinWise Bank provided more details about the breach?

FinWise Bank has stated it cannot comment on the data breach issue, citing pending litigation filed by several of the individuals impacted by the breach. This legal action has limited the company's ability to provide additional details publicly.

How long did the FinWise Bank breach go undetected?

The FinWise Bank data breach went undetected for over a year, occurring on May 31, 2024, but not being discovered and reported until June 18, 2025. This extended period highlights the challenges in detecting insider threats.

What type of company is FinWise Bank?

FinWise Bank is a Utah-based financial institution that provides fintech solutions and banking services. The company partners with technology providers like American First Finance to offer various financial products including installment loans to consumers.

Incident

Former FinWise Bank employee breaches data of 689,000 customers

Q: When did the FinWise Bank data breach occur?

The FinWise Bank data breach occurred on May 31, 2024, but remained undetected for over a year until June 18, 2025, when it was finally discovered and reported to authorities.

Q: What type of data was exposed in the FinWise Bank breach?

FinWise Bank redacted the complete list of exposed data types from the breach notification. However, the company is offering 12 months of free credit monitoring and identity theft protection services, which typically indicates that sensitive information such as Social Security numbers may have been exposed.

published: Sept. 16, 2025

Learn More

FinWise Bank, a Utah-based provider of fintech solutions and banking services, is reporting a data breach that exposed the personal information of 689,000 individuals. T

he incident occurred on May 31, 2024, but remained undetected for over a year until June 18, 2025 when the breach was finally discovered and reported to the authorities

The cause of this security incident was an insider threat involving a former FinWise employee who accessed FinWise data after the end of their employment. The former employee apparently accessed American First Finance (AFF) data.

FinWise contracts with AFF to offer installment loans to consumers. FinWise is serving as the lender and AFF as the technology provider.

FinWise redacted the complete list of exposed data types from the breach notification.

FinWise is offering of 12 months of free credit monitoring and identity theft protection services which usually means that sensitive information such as Social Security numbers have been exposed.

FinWise said it cannot comment on the issue, citing pending litigation filed by several of the individuals impacted by the data breach

Former FinWise Bank employee breaches data of 689,000 customers

Read More
Massive $130 million attempted theft targets brazilian Fintech …
BMO Bank reports Data Breach exposing customer data
Bybit Exchange hit by security incident, loses $1.4 …
Fintech Giant Finastra reports data breach
United Home Loans reports data breach