Mark Leyden & Associates Data Breach Exposes Social Security Numbers and Financial Information

Finance data breach illustration
Breach Discovery: 23rd February 2026Breach Notification: 24th March 2026

What Happened in the Mark Leyden & Associates Data Breach?

Mark Leyden & Associates, an Indianapolis-based wealth management and financial advisory firm, has disclosed a data breach affecting some of its clients. The Mark Leyden & Associates data breach involved unauthorized access to a company email account. As a result, sensitive personal information belonging to certain individuals may have been exposed.

According to the company’s notification letters, the unauthorized access occurred over roughly six months, between May and October of 2025. This means an intruder may have had access to the email account for an extended period before anyone noticed. The company discovered the breach on Feb. 23, 2026, which set off a formal investigation into the incident.

Following detection, investigators worked to determine exactly what happened and which files were accessed. On Feb. 18, 2026, that investigation confirmed emails involved in the incident contained personal information belonging to specific individuals. Because the review took time to complete, there was a gap between discovery and full confirmation of the exposed data. The company then began notifying affected consumers on March 24, 2026.

Who was affected?

The individuals affected by this breach appear to be clients of Mark Leyden & Associates whose personal information was stored in or referenced within the compromised email account. Since the firm provides wealth management and financial advisory services, affected individuals likely include current or former clients who shared sensitive financial details with the firm.

State filings confirm at least one Maine resident, three Massachusetts residents and two New Hampshire residents were affected. However, the total number of affected individuals nationwide has not been publicly disclosed. As a result, the true scope of this breach beyond those states remains unclear.

What Information Was Potentially Exposed?

The breach exposed several types of sensitive personal information. Notably, the exact combination of exposed data varied from person to person, meaning not every affected individual had the same information compromised.

  • Full names
  • Social Security numbers
  • Driver’s license numbers
  • Financial account information

Because Social Security numbers and financial account details were involved, affected individuals face a heightened risk of identity theft. Criminals can use this type of information to open new credit accounts, apply for loans or file fraudulent tax returns in someone else’s name. In addition, exposed driver’s license numbers could be used to create fake identification documents.

Financial account information exposure also raises the risk of direct account takeover or unauthorized transactions. For example, a bad actor could attempt to access an existing bank or investment account using stolen details. Given that this breach involves a wealth management firm, the financial stakes for affected clients may be particularly significant.

What is the company doing?

After discovering the breach, Mark Leyden & Associates launched an investigation to determine the scope of the incident. Once the investigation confirmed which individuals were affected, the firm sent notification letters via U.S. First-Class mail. These letters included guidance on protective steps recipients could take to reduce their risk.

In response to the breach, Mark Leyden & Associates is offering complimentary credit monitoring and identity theft protection services through IDX. Some individuals received a two-year membership, while others received a one-year membership. Affected individuals can enroll using the unique code provided in their letter, though enrollment must be completed by June 20, 2026. The firm also set up a dedicated toll-free call center to answer questions about the breach.

What Should Affected Individuals Do?

Place a Fraud Alert or Credit Freeze

Because Social Security numbers and financial account information were exposed, affected individuals should strongly consider placing a fraud alert or credit freeze. This step makes it much harder for criminals to open new accounts using stolen information. You can contact Equifax, Experian and TransUnion directly to request either protection.

A credit freeze restricts access to your credit report entirely, while a fraud alert requires creditors to verify your identity before extending credit. Both options are free and can be lifted later if needed. Given the sensitivity of the data involved here, taking this step promptly is a reasonable precaution.

Monitor Your Credit Reports and Financial Accounts

Affected individuals should request free credit reports at AnnualCreditReport.com and review them carefully. Look specifically for unfamiliar accounts, unexpected credit inquiries or other signs of suspicious activity. Because financial account information was exposed in this breach, monitoring bank and investment accounts closely is also important.

Regularly checking statements can help you catch unauthorized transactions early. If you notice anything unusual, report it to your financial institution right away. Early detection often makes it easier to reverse fraudulent charges before they cause lasting damage.

Guard Against Tax Fraud and Identity Misuse

Since Social Security numbers were among the exposed data, affected individuals should consider obtaining an IRS Identity Protection PIN. This tool helps prevent someone else from filing a fraudulent tax return using your stolen Social Security number. The IRS offers this service directly through its website.

In addition, affected individuals should report any suspected identity theft to the Federal Trade Commission through IdentityTheft.gov. Filing a report with local law enforcement can also help create an official record. This documentation may prove useful if fraudulent activity occurs later and you need to dispute charges or accounts.

Enroll in Complimentary Identity Protection Services

Mark Leyden & Associates is offering free credit monitoring and identity theft protection through IDX for eligible individuals. Enrolling is a practical way to receive ongoing alerts about potential misuse of your information. Because the enrollment deadline is June 20, 2026, affected individuals should act soon rather than waiting.

To enroll, use the unique code included in your notification letter and visit the IDX enrollment page. This service can help detect suspicious activity that you might otherwise miss. For added peace of mind, consider using it alongside your own regular account monitoring.

Stay Alert for Phishing Attempts

After a breach like this, scammers sometimes send phishing emails or calls referencing the incident by name. Therefore, affected individuals should be cautious of any unexpected messages mentioning Mark Leyden & Associates or this breach. Legitimate notifications will not ask you to provide sensitive information over email or phone.

If you receive a suspicious message, avoid clicking any links or providing personal details. Instead, contact the company directly using verified contact information from its official notification letter. This simple habit can prevent scammers from exploiting the breach for further fraud.



More Information

Official Notice from Mlassoc

Official Notice from Maine

Official Notice from Mass

Official Data Breach Notification Letter (PDF)

Official Notice from Equifax

Official Notice from Experian

Official Notice from Transunion

Official Notice from Annualcreditreport

Official Notice from Irs

Official Notice from Identitytheft

Related Data Breaches