Mariner Wealth Advisors Reports Data Breach Affecting Nearly 9,000 Clients
Mariner Wealth Advisors LLC, a Kansas-based wealth management and retirement plan advisory firm, disclosed a data breach that exposed the personal information of 8,995 customers. The incident, reported to the Maine Attorney General’s office on Monday, occurred on November 21, 2025, when a "criminal third party" accessed three employees’ cloud applications and downloaded sensitive files. The breach was detected three days later, on November 24.
Compromised data included clients’ names, birth dates, Social Security numbers, and account numbers, affecting 17 Maine residents among those impacted. While the firm’s investigation conducted with third-party experts found no evidence of data misuse, affected clients were notified via letter and offered 12 months of credit monitoring.
The breach follows a significant corporate shift: in April 2025, Mariner Advisor Network, a division of Mariner Wealth Advisors, was acquired by LPL Financial Holdings Inc. and Private Advisor Group LLC, transferring 367 advisers managing $31 billion in assets.
Notably, LPL Financial itself suffered a separate breach on November 10, 2025, exposing the data of 1,581 customers after malware spread through phishing attacks on adviser devices. The company responded by implementing new security safeguards.
The incidents reflect broader cybersecurity challenges, with the FBI’s 2024 Internet Crime Report recording over 1 million cybercrime incidents nationwide last year. Mariner Wealth Advisors has not yet publicly commented on the breach.
Source: https://www.planadviser.com/mariners-wealth-advisors-data-breach-affects-nearly-9000-customers/
LPL Financial Holdings Inc. TPRM report: https://www.rankiteo.com/company/lpl-financial
Mariner Wealth Advisors LLC TPRM report: https://www.rankiteo.com/company/mariner-wealth-advisors
"id": "lplmar1780432565",
"linkid": "lpl-financial, mariner-wealth-advisors",
"type": "Breach",
"date": "11/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '8995',
'industry': 'Financial Services',
'location': 'Kansas, USA',
'name': 'Mariner Wealth Advisors LLC',
'type': 'Wealth management and retirement plan '
'advisory firm'}],
'attack_vector': 'Unauthorized access to cloud applications',
'customer_advisories': 'Notification via letter to affected clients',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '8995',
'personally_identifiable_information': 'Names, birth dates, '
'Social Security '
'numbers, account '
'numbers',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Personal Identifiable '
'Information (PII)'},
'date_detected': '2025-11-24',
'date_publicly_disclosed': '2025-11-25',
'description': 'Mariner Wealth Advisors LLC disclosed a data breach that '
'exposed the personal information of 8,995 customers. The '
'incident occurred when a criminal third party accessed three '
'employees’ cloud applications and downloaded sensitive files. '
'Compromised data included names, birth dates, Social Security '
'numbers, and account numbers. Affected clients were offered '
'12 months of credit monitoring.',
'impact': {'data_compromised': 'Names, birth dates, Social Security numbers, '
'account numbers',
'identity_theft_risk': 'High',
'systems_affected': 'Cloud applications'},
'initial_access_broker': {'entry_point': 'Cloud applications'},
'investigation_status': 'Completed (no evidence of data misuse found)',
'recommendations': 'Offered 12 months of credit monitoring to affected '
'clients',
'references': [{'source': 'Maine Attorney General’s office'}],
'regulatory_compliance': {'regulatory_notifications': 'Reported to Maine '
'Attorney General’s '
'office'},
'response': {'communication_strategy': 'Notification via letter to affected '
'clients',
'third_party_assistance': 'Third-party experts'},
'threat_actor': 'Criminal third party',
'title': 'Mariner Wealth Advisors Data Breach Affecting Nearly 9,000 Clients',
'type': 'Data Breach'}