PNC Bank Data Breach Lawsuit Investigation

Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the PNC Financial Services data breach.

If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.

About PNC Financial Services

PNC Financial Services Group is an American financial services corporation headquartered in Pittsburgh, Pennsylvania. The company operates approximately 2,200 bank branches and serves customers in all 30 of the largest U.S. markets, as well as maintaining international offices in Canada, Germany, the United Kingdom and China.

As of June 2025, PNC managed assets totaling $559 billion. PNC’s business is divided into four main areas: retail banking, corporate and institutional banking, asset management and real estate. The company provides a wide range of services, including traditional banking, mortgage and brokerage services, commercial lending, capital markets products and investment management.

What happened?

In September 2025, PNC Financial Services reported a data breach that compromised the personal information of some customers. According to the notice sent to affected individuals, the breach involved the improper disclosure of personally identifiable information to another client without authorization.

Information Exposed

• Name
• Address
• Account number(s)
• Social Security number

PNC began notifying impacted bank customers by mail on Sept. 10, 2025. The data breach was disclosed to the Massachusetts Attorney General’s office on Sept. 16, 2025.

In addition, on Sept. 7, 2025, a threat actor known as Market Exchange claimed on the dark web to be selling data allegedly stolen from PNC Financial Services. The posting described a leak of 740,000 records containing names, emails, account types, phone numbers and other details. The compromised data was reportedly offered for sale on the Tor network.

PNC has not released the total number of customers impacted by the data breach.

Your Rights and Next Steps

If you received a notice from PNC regarding this breach, you have several options to protect yourself and your information. You may be entitled to seek compensation for any harm or inconvenience caused by this cybersecurity incident.

• Communication and credit monitoring services: Review and save any notification letters you receive. Enroll in the free Experian IdentityWorks credit monitoring services, offered by the bank.
• Monitor your accounts carefully: Check your financial statements regularly for suspicious activity or unauthorized transactions. If you notice anything unusual, contact your financial institution immediately.
• Fraud alert and credit reports: A fraud alert informs creditors to take extra steps to verify your identity before opening new accounts in your name. Consumers are also entitled to one free credit report annually from each credit bureau. You can request a fraud alert or a credit report by contacting any one of the three major credit bureaus.
• Seek legal help: Lawyers are ready to help you understand your rights and pursue compensation.

You May Be Entitled to Compensation

If your information was exposed in the PNC data breach, you may have legal rights and could be eligible for compensation. Lawyers are ready to help those affected understand their options and pursue claims for damages related to the breach.

To find out if you qualify and to join a potential lawsuit, complete the form below.

Sources

• Massachusetts Attorney General
• PNC Financial Services