HealthEquity, a non-bank health savings trustee responsible for servicing HSA accounts, suffered a massive breach in March 2024 after a third-party’s account was accessed by an unauthorized user. While specific personal information may vary for each individual, the following data could be compromised: names, employee IDs, employers, addresses, phone numbers, social security numbers, and dependent contact information. Payment information was not affected by the breach.
Take action to protect your exposed data:
Social Security Number
Check your credit report regularly for unauthorized activity.
Register for an online account with the Social Security Administration to securely access information from your Social Security record, including earnings and benefits history. https://www.ssa.gov/myaccount
I've taken note of these steps
General Information
If you use the same Username and Passwords for multiple websites or apps, change them when there is a breach.
Think before you download apps, click on links, or reply to emails that might be harmful or fraudulent.
Be suspicious of strangers who ask for personal information by email. If they claim to be from your financial institution, the government or a company you do business with, contact the business directly.
Don’t use all or part of your Social Security number as a PIN (Personal Identification Number) for a credit/debit card or an online account username or password.
I've taken note of these steps
Great, you're all done!
Print These Instructions
Find out more
Want more information?
Learn more about this data breach.
Get steps to keep your data safe after an exposure.