Information about Chime/Go2Bank/Acorns solicitations for new bank accounts

What we know about the solicitations

UC recently learned that names, Social Security numbers and other personal information of some members of the UC community are being used to open unauthorized bank accounts at financial institutions named Chime, Go2Bank, and Acorns. We do not believe UC accounts have been compromised, and we suspect the personal information being used to create these unauthorized accounts was obtained from prior data breaches. Affected UC community members are receiving emails from these institutions asking them to confirm the new account by clicking a link in the email.

What you should do

Anyone receiving an email from Chime, Go2Bank, or Acorns asking them to confirm a new bank account they do not recognize should not click any links in the email itself. Report the email to UCSF IT Security by using the Phish Alarm Report Phish button in Outlook or Outlook Web Access.

What individuals can do to protect themselves

• Watch out for suspicious communications from Chime/Go2Bank/Acorns: Be on the lookout for email or physical mail notifications suggesting an account that you do not recognize has been opened. These may come in different forms — notification of a new account, requests to confirm your email address, or physical debit/credit cards sent to your home address.
• Promptly close unauthorized accounts: If you believe an account has been opened without your permission, contact the company immediately and inform them that you believe someone has fraudulently opened an account. Ask the company to close the account and confirm the closure with you once complete. 
  • Chime: 844-244-6363 or [email protected]
  • Go2Bank: 855-459-1334 or by using one of the methods listed at https://www.go2bank.com/help/contact-us
  • Acorns: (855) 739-2859 or by using one of the methods listed at https://support.acorns.com/hc/en-us/articles/1500010364362-Acorns-Contact-Information
• Monitor and set up alerts for bank account(s): Monitor bank account(s) for suspicious transactions and report any to your bank. Ask the bank for online monitoring and alerts on your account.
• Place a fraud alert on your credit file: We recommend impacted individuals place a fraud alert on their credit file by contacting one of the three nationwide credit bureaus listed below. If a fraud alert is placed on a consumer’s credit file, certain identity verification steps must be taken prior to extending new credit.
  • https://www.equifax.com/personal/
  • https://www.transunion.com
  • https://www.experian.com/
• Reminders for protecting personal information: Here are five rules for protecting one’s information. In addition, individuals may take additional identity theft measures described at https://www.identitytheft.gov/databreach