Edelman Financial Engines Data Breach Exposes Sensitive Client Information
Edelman Financial Engines, a California-based financial planning and investment advisory firm, disclosed a data breach on January 7, 2026, after detecting unauthorized access to client information. The company, which serves approximately 1.27 million clients across 140 U.S. locations, confirmed that the incident exposed personally identifiable data, including names, dates of birth, addresses, phone numbers, emails, financial planning details, and Social Security numbers.
The breach affected 5,083 individuals in the U.S., with five cases reported in Maine. Edelman Financial Engines engaged external security experts to investigate the incident, terminated the unauthorized access, and filed disclosures with the attorneys general of California and Maine. Affected clients were notified in writing on January 28, 2026.
As part of its response, the company offered impacted individuals 24 months of complimentary credit and identity monitoring services through Kroll, including dark web monitoring, Social Security number scans, and fraud consultation. The law firm Shamis & Gentile P.A. is investigating potential compensation claims for those affected.
Source: https://www.claimdepot.com/investigations/edelman-financial-engines-data-breach-2026
Edelman Financial Engines cybersecurity rating report: https://www.rankiteo.com/company/edelman-financial-engines
"id": "EDE1770317444",
"linkid": "edelman-financial-engines",
"type": "Breach",
"date": "1/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '5083',
'industry': 'Financial Services',
'location': 'California, USA',
'name': 'Edelman Financial Engines',
'size': '1.27 million clients across 140 U.S. '
'locations',
'type': 'Financial Planning and Investment Advisory '
'Firm'}],
'customer_advisories': 'Affected clients notified in writing on January 28, '
'2026; offered 24 months of complimentary credit and '
'identity monitoring services through Kroll',
'data_breach': {'number_of_records_exposed': '5083',
'personally_identifiable_information': 'Names, dates of '
'birth, addresses, '
'phone numbers, '
'emails, Social '
'Security numbers',
'sensitivity_of_data': 'High (Social Security numbers, '
'financial planning details)',
'type_of_data_compromised': 'Personally identifiable '
'information (PII)'},
'date_publicly_disclosed': '2026-01-07',
'description': 'Edelman Financial Engines disclosed a data breach after '
'detecting unauthorized access to client information. The '
'breach exposed personally identifiable data, including names, '
'dates of birth, addresses, phone numbers, emails, financial '
'planning details, and Social Security numbers.',
'impact': {'data_compromised': 'Personally identifiable information (names, '
'dates of birth, addresses, phone numbers, '
'emails, financial planning details, Social '
'Security numbers)',
'identity_theft_risk': 'High'},
'investigation_status': 'Ongoing',
'references': [{'source': 'Edelman Financial Engines Disclosure'}],
'regulatory_compliance': {'legal_actions': 'Potential compensation claims '
'being investigated by Shamis & '
'Gentile P.A.',
'regulatory_notifications': 'Filed disclosures with '
'attorneys general of '
'California and Maine'},
'response': {'communication_strategy': 'Notified affected clients in writing '
'on January 28, 2026; filed '
'disclosures with attorneys general of '
'California and Maine',
'containment_measures': 'Terminated unauthorized access',
'incident_response_plan_activated': 'Yes',
'third_party_assistance': 'External security experts'},
'title': 'Edelman Financial Engines Data Breach Exposes Sensitive Client '
'Information',
'type': 'Data Breach'}