Davenport & Company Data Breach Exposes Social Security Numbers

On April 4, 2025, Davenport & Company LLC reported a data breach to the Massachusetts Attorney General's website, disclosing 30 individuals residing in Massachusetts have been affected.

The breach involved unauthorized access to sensitive personally identifiable information (PII) like Social Security numbers, financial account information, and driver's license details.

The breach was first brought to public attention on December 13, 2024 when a threat actor, operating under the name "LEAKEDDATA," claimed responsibility for hacking Davenport & Company. The hacker posted about the breach on the openweb network, alleging to have leaked a database containing sensitive customer information from Davenport & Company LLC.

Given the nature of the exposed data, this breach is considered serious, as it involves highly sensitive personal and financial information that could potentially be used for identity theft or financial fraud.

Davenport & Company's response

In response to this data breach, Davenport & Company is providing complimentary credit monitoring, credit reporting, and credit score services to impacted consumers for a period of 24 months. These services, provided by Cyberscout (a TransUnion company specializing in fraud assistance and remediation services), will alert individuals whenever changes occur in their credit files.

Affected individuals can enroll in these credit monitoring services by visiting the Cyberscout activation page and following the provided instructions. Enrollment is required within 90 days from the date of the notification letter sent to affected individuals.

Davenport & Company also recommends that affected individuals closely monitor their financial accounts and credit reports for signs of suspicious activity. Consumers are encouraged to obtain free annual credit reports from the three major credit bureaus (TransUnion, Experian, and Equifax) by visiting AnnualCreditReport.com or calling 1-877-322-8228.

Additionally, individuals have the right to place a fraud alert or credit freeze on their credit files at no cost. Fraud alerts require businesses to verify identity before issuing new credit, while credit freezes restrict access to credit reports entirely without explicit authorization. Instructions for placing fraud alerts or credit freezes can be found by contacting the three major credit bureaus directly.

For further assistance and resources regarding identity theft protection, affected individuals are advised to contact the Federal Trade Commission (FTC) at IdentityTheft.gov or by calling 1-877-ID-THEFT (1-877-438-4338).

For more information about Davenport & Company LLC, visit their official website at investdavenport.com.