DFPG Investments LLC: Financial Foundations Data Breach Lawsuit Investigation

Financial Foundations, Inc. Data Breach Exposes Sensitive Client Information

On April 15, 2026, Financial Foundations, Inc., a Maryland-based financial services firm specializing in wealth management, retirement planning, and insurance evaluations, detected a data breach compromising sensitive client information. The company, which operates as a branch of DFPG Investments LLC, reported the incident to the attorneys general of Maine, Massachusetts, and Vermont in early May 2026. Affected individuals began receiving written notifications on May 8, 2026.

The breach exposed a range of personally identifiable information, including names, Social Security numbers, driver’s licenses, government ID numbers, credit/debit card details, financial account information, and health records. The investigation confirmed unauthorized access to these data types, though the full scope and method of the breach remain undisclosed.

Shamis & Gentile P.A., a class action law firm, is currently investigating the incident and potential legal claims for affected clients. Those impacted may be eligible for compensation as part of ongoing litigation efforts. The breach underscores the growing risks to financial service providers handling sensitive consumer data.

Source: https://www.claimdepot.com/investigations/financial-foundations-data-breach-2026

Financial Foundations, Inc. cybersecurity rating report: https://www.rankiteo.com/company/financial-foundations-incorporated

"id": "FIN1778625740",
"linkid": "financial-foundations-incorporated",
"type": "Breach",
"date": "4/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Wealth Management, Retirement Planning, '
                                    'Insurance Evaluations',
                        'location': 'Maryland, USA',
                        'name': 'Financial Foundations, Inc.',
                        'type': 'Financial Services Firm'}],
 'customer_advisories': 'Written notifications sent to affected individuals on '
                        'May 8, 2026',
 'data_breach': {'personally_identifiable_information': ['Names',
                                                         'Social Security '
                                                         'numbers',
                                                         'Driver’s licenses',
                                                         'Government ID '
                                                         'numbers',
                                                         'Credit/debit card '
                                                         'details'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information',
                                              'Financial Account Information',
                                              'Health Records']},
 'date_detected': '2026-04-15',
 'date_publicly_disclosed': '2026-05-08',
 'description': 'On April 15, 2026, Financial Foundations, Inc., a '
                'Maryland-based financial services firm specializing in wealth '
                'management, retirement planning, and insurance evaluations, '
                'detected a data breach compromising sensitive client '
                'information. The company reported the incident to the '
                'attorneys general of Maine, Massachusetts, and Vermont in '
                'early May 2026. Affected individuals began receiving written '
                'notifications on May 8, 2026. The breach exposed personally '
                'identifiable information, including names, Social Security '
                'numbers, driver’s licenses, government ID numbers, '
                'credit/debit card details, financial account information, and '
                'health records. Unauthorized access to these data types was '
                'confirmed, though the full scope and method of the breach '
                'remain undisclosed.',
 'impact': {'data_compromised': 'Personally identifiable information, '
                                'including names, Social Security numbers, '
                                'driver’s licenses, government ID numbers, '
                                'credit/debit card details, financial account '
                                'information, and health records',
            'identity_theft_risk': 'High',
            'legal_liabilities': 'Potential legal claims and compensation for '
                                 'affected clients',
            'payment_information_risk': 'High'},
 'investigation_status': 'Ongoing',
 'references': [{'source': 'Shamis & Gentile P.A. Class Action Investigation'}],
 'regulatory_compliance': {'legal_actions': 'Class action investigation by '
                                            'Shamis & Gentile P.A.',
                           'regulatory_notifications': ['Maine Attorney '
                                                        'General',
                                                        'Massachusetts '
                                                        'Attorney General',
                                                        'Vermont Attorney '
                                                        'General']},
 'response': {'communication_strategy': 'Written notifications to affected '
                                        'individuals on May 8, 2026'},
 'title': 'Financial Foundations, Inc. Data Breach Exposes Sensitive Client '
          'Information',
 'type': 'Data Breach'}

DFPG Investments LLC: Financial Foundations Data Breach Lawsuit Investigation

Drupal: CISA orders feds to patch actively exploited Drupal vulnerability

DentaQuest: DentaQuestData Breach?

Wiley Rein LLP: Healthcare AuthorityDeals & Corporate GovernanceDigital Health & TechnologyOtherPolicy & Compliance