If a user receives a two-factor authentication code and is not attempting to log in, it is likely that a data aggregator is attempting to retrieve data. This should only occur if a user has previously shared their login information through a third-party app such as Venmo, Intuit, or Mint.com.
To avoid future occurrences, a user can change their Digital Banking password, and no further action is needed.
This is a list of IPs associated with Plaid, a well-known data aggregator:
54.88.74.128
54.208.59.10
54.88.202.28
18.214.218.91
3.211.30.208
3.214.25.67
52.88.82.239
52.41.247.19
52.0.205.192
52.3.166.211
35.174.147.86
34.199.37.46
35.168.137.48
3.215.49.214
34.202.178.138
Your institution's staff can view a user's login history in Narmi Command. To do this, from the Narmi Command sidebar, select Customers/Members > select a user > scroll down to the History section.
