MV Financial Data Breach Exposes SSNs and other PII

On Feb. 12, 2026, MV Financial Group Inc., a Bethesda, Md.-based wealth and asset management firm, disclosed a data breach that has so far affected 33 Massachusetts residents.

The incident stemmed from a network disruption that occurred between June 8 and June 10, 2025. The company’s investigation determined that during this window, certain information within their systems was subject to unauthorized access or acquisition.

MV Financial engaged third-party cybersecurity specialists to understand the scope and nature of the breach. A thorough review of the compromised data was completed by Dec. 22, 2025, after which affected individuals were notified.

The exposed information includes first and last names, Social Security numbers, driver’s license/state issued identification numbers, financial account details, dates of birth, passport number, taxpayer ID number, and payment card information.

The breach was reported to the Massachusetts Office of Consumer Affairs and Business Regulation. Additionally, the company has posted a notice of the data incident on its website.

MV Financial Group's response

Upon learning of the incident, MV Financial took steps to secure its systems and launched a comprehensive investigation with the help of cybersecurity experts. The company has since implemented additional technical safeguards designed to enhance the security of the information it holds and to prevent similar incidents in the future.

As a precaution, MV Financial is offering affected individuals complimentary credit monitoring and identity protection services for 24 months through Cyberscout, a TransUnion company. These services include single bureau credit monitoring, credit reports, credit scores, and proactive fraud assistance. Impacted individuals are encouraged to enroll within 90 days of receiving notification.

Given the nature of the breach, those affected should remain vigilant for signs of identity theft or fraud.

Recommended steps include monitoring account statements and credit reports, placing fraud alerts or credit freezes with major credit bureaus, and reporting any suspicious activity to financial institutions or law enforcement.