- 1 Minute to read
- Print
- PDF
Unprompted Two-factor Authentication Code
- 1 Minute to read
- Print
- PDF
If a user receives a two-factor authentication code and was not attempting to log in, it is likely the case that a data aggregator is attempting to retrieve data. This should only occur if a user has previously shared their login information through a third-party app such as Venmo, Intuit, or Mint.com.
To avoid future occurrences, a user can change their Digital Banking password and no further action is needed.
This is a list of IP's associated with Plaid, a well-known data aggregator:
- 54.88.74.128
- 54.208.59.10
- 54.88.202.28
- 18.214.218.91
- 3.211.30.208
- 3.214.25.67
- 52.88.82.239
- 52.41.247.19
- 52.0.205.192
- 52.3.166.211
- 35.174.147.86
- 34.199.37.46
- 35.168.137.48
- 3.215.49.214
- 34.202.178.138
Your institution's staff can view a user's login history in the Admin Platform. To do this, from the Admin Platform, select Manage Users on the top navigation bar and scroll down to the History section.