Betterment has confirmed a significant security breach involving unauthorized crypto-related messages sent to customers on January 9, 2026. While no login credentials or account funds were compromised, personal customer data was accessed by an unauthorized actor.
Below is a summary of the leaked data:
| Leaked Data | Affected Customer Information |
|---|---|
| Names | Yes |
| Email Addresses | Yes |
| Phone Numbers | Yes |
| Birthdates | Yes |
| Account Information | No (Accounts remain secure) |
| Crypto Information | No (No sensitive financial data leaked) |
Betterment has reassured its customers that despite the data exposure, there was no access to account credentials, funds, or investment details. The company responded quickly, investigating the incident with the help of cybersecurity experts and notifying affected users immediately.
The breach stemmed from a social engineering attack, exploiting third-party marketing tools used by Betterment. While the affected data is sensitive, Betterment’s internal security protocols protected financial assets, preventing any unauthorized withdrawals or changes to accounts.
Customers have been advised to disregard the fraudulent crypto messages and follow Betterment’s ongoing updates as it strengthens its security framework.
.jpg "CVE-2026-25049 - Critical Remote Code Execution Vulnerability in n8n")
No Comment! Be the first one.