Automated funding platform Betterment has confirmed that hackers broke into a few of its programs final week and accessed the private data of an undisclosed variety of its clients.
In an e-mail despatched on Monday, which TechCrunch has seen, Betterment stated that hackers gained entry to some firm programs on January 9 by means of a social engineering assault, which concerned “third-party platforms” that the corporate makes use of for advertising and operations.
The corporate stated buyer names, e-mail addresses and postal addresses, telephone numbers, and dates of start have been compromised within the assault.
With this entry, hackers have been capable of ship a fraudulent notification to customers, claiming to triple the worth of their crypto by sending $10,000 to a pockets managed by the attacker, as reported by The Verge.
Betterment, which allows customers to spend money on crypto, additionally published an announcement in regards to the breach on its web site, however didn’t disclose what number of clients have been focused, nor what number of had their private data accessed, stolen, or seen by the hackers.
Betterment added that it detected the assault on the identical day and “instantly revoked the unauthorized entry and launched a complete investigation, which is ongoing,” with the assistance of an unspecified cybersecurity agency. Betterment additionally stated it has reached out to the shoppers focused by the hackers and “suggested them to ignore the message.”
“Our ongoing investigation has continued to display that no buyer accounts have been accessed and that no passwords or different log-in credentials have been compromised,” Betterment wrote within the e-mail.
Techcrunch occasion
San Francisco
|
October 13-15, 2026
Representatives for Betterment didn’t instantly reply to a request for remark asking for extra particulars in regards to the assault.
As of the time of publication, Betterment’s safety incident net web page contains a hidden “noindex” tag in its supply code, which tells serps to disregard the web page, making it tougher for anybody looking the online to find details about the information breach.
