verified2026-01-09

BettermentBetterment breach

betterment.com · 1,435,174 records compromised

Records
1.44M
Breach date
2026-01-09
Domain
betterment.com
Data classes
9

Description

In January 2026, the automated investment platform Betterment confirmed it had suffered a data breach attributed to a social engineering attack . As part of the incident, Betterment customers received fraudulent crypto-related messages promising high returns if funds were sent to an attacker-controlled cryptocurrency wallet. The breach exposed 1.4M unique email addresses, along with names and geographic location data. A subset of records also included dates of birth, phone numbers, and physical addresses. In its disclosure notice , Betterment stated that the incident did not provide attackers with access to customer accounts and did not expose passwords or other login credentials.

Compromised data classes· 9

Dates of birthDevice informationEmail addressesEmployersGeographic locationsJob titlesNamesPhone numbersPhysical addresses

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Breach
Robinhood
Breach
Prosper
Breach
Substack
Breach
Atlas Quantum
Breach
Figure
Breach
Adpost
Sourced from Have I Been Pwned. Aggregate metadata only — no PII. Curated by Adam Lundqvist, Founder at SQUR.