Betterment hit by network compromise
Incident
Summary
Hide ▲
Show ▼
Betterment disclosed a January 2026 compromise affecting systems used for customer outreach. Attackers used the access to send cryptocurrency-themed scam emails or messages to some customers. Betterment said the unauthorized access was contained and removed. The reporting did not indicate customer account takeover or exposed credentials.
Related Happenings
Optimizely hit by network compromise
Incident
First: 23.02.2026 20:04
Last: 23.02.2026 20:04
Sources 1
About this happening:
**Optimizely** confirmed a **voice-phishing breach** that exposed **basic business contact information**, creating a limited but real follow-on phishing risk. The intrusion touche...
Optimizely hit by network compromise
IncidentAbout this happening: **Optimizely** confirmed a **voice-phishing breach** that exposed **basic business contact information**, creating a limited but real follow-on phishing risk. The intrusion touche...
Flickr users' member information exposure via third-party email provider vulnerability
Data Leak
First: 06.02.2026 11:43
Last: 06.02.2026 11:43
Sources 1
About this happening:
Flickr disclosed a **potential data leak** affecting **users' member information** after a **third-party email service provider vulnerability** may have exposed **real names, emai...
Flickr users' member information exposure via third-party email provider vulnerability
Data LeakAbout this happening: Flickr disclosed a **potential data leak** affecting **users' member information** after a **third-party email service provider vulnerability** may have exposed **real names, emai...
Betterment customer data leak after January systems breach
Data Leak
First: 05.02.2026 13:16
Last: 05.02.2026 13:16
Sources 1
How related:
Hackers stole email addresses and other personal information from 1.4 million accounts after breaching the systems of automated investment platform Betterment in January.
About this happening:
**Betterment** suffered a **systems breach in January** that exposed personal information from **about 1.4 million accounts**. The stolen dataset included **email addresses, names...
Betterment customer data leak after January systems breach
Data LeakHow related: Hackers stole email addresses and other personal information from 1.4 million accounts after breaching the systems of automated investment platform Betterment in January.
About this happening: **Betterment** suffered a **systems breach in January** that exposed personal information from **about 1.4 million accounts**. The stolen dataset included **email addresses, names...
ShinyHunters vishing campaign targeting SSO accounts
Campaign
First: 02.02.2026 15:46
Last: 02.02.2026 15:46
Sources 1
About this happening:
The **ShinyHunters** group ran a **voice phishing** campaign against **single sign-on (SSO) accounts** at **Okta, Microsoft, and Google**, widening risk across **more than 100 hig...
ShinyHunters vishing campaign targeting SSO accounts
CampaignAbout this happening: The **ShinyHunters** group ran a **voice phishing** campaign against **single sign-on (SSO) accounts** at **Okta, Microsoft, and Google**, widening risk across **more than 100 hig...
Latest development: 26.05.2026 22:46
ShinyHunters claims it breached Charter Communications on April 1 by vishing an employee's Microsoft Entra account, then used that access to export millions of consumer and business customer records from the company's Salesforce instance; Charter says no sensitive personal information or CPNI was exfiltrated.
SoundCloud hit by network compromise
Incident
First: 27.01.2026 14:25
Last: 27.01.2026 14:25
Sources 1
About this happening:
**SoundCloud** confirmed a **breach** that exposed personal and contact data from **29.8 million user accounts**, making the incident a major compromise of the audio streaming pla...
SoundCloud hit by network compromise
IncidentAbout this happening: **SoundCloud** confirmed a **breach** that exposed personal and contact data from **29.8 million user accounts**, making the incident a major compromise of the audio streaming pla...
Timeline
-
13.01.2026 18:46 1 articles · 4mo ago
Betterment marketing platform compromise sends fake crypto emails
Exploitation ObservedAn attacker gained access to a third-party software platform Betterment uses for marketing activity and used Betterment infrastructure to send fraudulent crypto-related emails to some customers, including messages from [email protected] that promised to triple Bitcoin and Ethereum deposits.
Show sources
- Betterment confirms data breach after wave of crypto scam emails — www.bleepingcomputer.com — 13.01.2026 18:46
-
12.01.2026 02:00 2 articles · 4mo ago
Betterment reports systems penetration and scam messaging
Initial DisclosureBetterment reported that threat actors penetrated its systems through social engineering and used that access to send cryptocurrency-related scam messages to some customers.
Show sources
- Crunchbase Confirms Data Breach After Hacking Claims — www.securityweek.com — 26.01.2026 14:22
- Crunchbase Confirms Data Breach After Hacking Claims — www.securityweek.com — 26.01.2026 14:22
-
10.01.2026 02:00 2 articles · 4mo ago
Betterment says unauthorized access was removed and customer accounts were not accessed
Technical Analysis UpdateBetterment warned customers that the crypto offer was fake, then confirmed unauthorized access to certain Betterment systems had been removed and said there was no indication the attacker reached Betterment customer accounts.
Show sources
- Betterment confirms data breach after wave of crypto scam emails — www.bleepingcomputer.com — 13.01.2026 18:46
- Betterment confirms data breach after wave of crypto scam emails — www.bleepingcomputer.com — 13.01.2026 18:46