Fried Frank Data Breach Exposes Social Security Numbers and Passport Numbers

Finance data breach illustration
Breach Discovery: 27th October 2025Breach Notification: 12th January 2026

What Happened in the Fried Frank Data Breach?

The Fried Frank data breach involved unauthorized access to a shared network drive at the law firm Fried, Frank, Harris, Shriver & Jacobson LLP. This firm serves as counsel to JPMorgan Chase and several J.P. Morgan conduit funds. According to official disclosures, an unauthorized third party compromised a single Fried Frank user account. As a result, the intruder was able to copy files stored on the firm’s internal network.

Fried Frank discovered the breach on Oct. 27, 2025. However, the firm did not notify JPMorgan Chase until Dec. 9, 2025, roughly six weeks later. This gap likely reflects the time needed to first understand what had happened internally. Once notified, JPMorgan Chase began working to determine which individuals and files were affected.

After Fried Frank shared the potentially impacted files, JPMorgan Chase performed its own independent assessment. This step helped identify the specific people whose information appeared in the stolen data. The investigation confirmed that personal information tied to JPMorgan-affiliated fund investors had been copied without authorization. Importantly, the incident was isolated to Fried Frank’s systems, and JPMorgan Chase’s own network was never compromised.

Who was affected?

The Fried Frank data breach affected people connected to JPMorgan Chase and various J.P. Morgan conduit funds. This includes fund investors as well as other individuals tied to those investments. For example, spouses and agents acting under a power of attorney were also caught up in the exposure.

In total, 659 people were affected nationwide. Reported state-level breakdowns include one person in Maine, 37 in Massachusetts, and two in New Hampshire. Because the breach touched a national law firm serving major financial clients, affected individuals could reside in any state. There is no indication in the disclosures that minors were specifically involved, though family members of investors may be impacted.

What Information Was Potentially Exposed?

The data taken from Fried Frank’s network drive included highly sensitive personal and financial identifiers. This combination of information creates significant risk for anyone affected. Below is a breakdown of the specific categories confirmed in official disclosures.

  • Full names
  • Account numbers
  • Social Security numbers
  • Passport numbers
  • Other government-issued ID numbers
  • Contact information

This mix of data is particularly concerning because it goes beyond basic contact details. Social Security numbers and passport numbers, in particular, are considered gold-standard identifiers for criminals. As a result, affected individuals face a heightened risk of identity theft, including fraudulent account openings and tax fraud.

In addition, exposed account numbers could enable direct financial fraud if bad actors gain access to related accounts. Because passport numbers were also exposed, some victims may face risks related to identity fraud involving international travel or government benefits. Given these risks, ongoing vigilance is essential for everyone notified of this breach.

What is the company doing?

In response to the incident, JPMorgan Chase and Fried Frank conducted a joint review to determine the scope of the breach. This effort focused on identifying exactly which files and individuals were involved. Once the assessment was complete, the companies notified affected individuals by mail.

Beyond notification, the two organizations have worked together to strengthen data security controls at Fried Frank. This step aims to prevent similar incidents from happening again. Additionally, JPMorgan Chase is offering two years of free credit monitoring through Experian IdentityWorks to everyone affected. This service includes daily credit bureau monitoring, identity theft resolution support, and up to $1 million in identity theft insurance.

What Should Affected Individuals Do?

Enroll in the Free Credit Monitoring Service

Affected individuals should take advantage of the complimentary Experian IdentityWorks enrollment offered by JPMorgan Chase. This service provides daily monitoring of credit bureau activity, which can help catch fraud early. Because enrollment is free for two years, there is little reason to skip this step.

Beyond monitoring, the service includes identity theft resolution support and up to $1 million in insurance coverage. This means that if fraud does occur, affected individuals have dedicated help to resolve it. Signing up promptly ensures the fullest protection window possible.

Place a Fraud Alert or Credit Freeze

Because Social Security numbers and account numbers were exposed, placing a fraud alert or credit freeze is strongly recommended. A fraud alert requires lenders to verify your identity before opening new credit in your name. A credit freeze goes further by blocking most access to your credit file entirely.

To set up either protection, contact one of the three major credit bureaus: Equifax, Experian, or TransUnion. Typically, only one bureau needs to be notified for a fraud alert, since they share that information. For a freeze, however, you may need to contact all three bureaus separately.

Monitor Financial Accounts and Credit Reports Closely

Affected individuals should regularly review their bank and credit card statements for unfamiliar transactions. Because account numbers were part of the stolen data, direct financial fraud is a realistic concern. Therefore, checking statements weekly, rather than monthly, can help catch problems sooner.

In addition, request free copies of your credit reports from all three major bureaus. Look carefully for accounts you don’t recognize or inquiries you didn’t authorize. If anything looks suspicious, report it immediately to your bank and the relevant credit bureau.

Stay Alert for Phishing and Identity Theft Attempts

Because contact information was exposed alongside sensitive identifiers, phishing attempts may follow this breach. Scammers often use stolen personal details to make fraudulent emails or calls seem legitimate. As a result, affected individuals should treat unexpected messages referencing this incident with caution.

Never provide personal information in response to an unsolicited email, text, or phone call. Instead, verify any claimed communication by contacting the organization directly through a known phone number. If you suspect identity theft has already occurred, consider speaking with a data breach attorney about your legal options.

Protect Your Passport and Government ID Information

Since passport numbers and other government ID numbers were exposed, affected individuals should watch for unusual activity tied to these documents. For example, unexpected notices about passport renewals or applications could signal misuse. If you notice anything unusual, contact the U.S. State Department promptly.

Additionally, consider monitoring for any government benefit applications made in your name. Because government ID numbers can be used to impersonate victims in official settings, this risk deserves particular attention. Staying proactive now can prevent larger complications later.



More Information

Official Notice from Friedfrank

Official Notice from Jpmorganchase

Related Data Breaches