EFE A.I CyberSecurity Scoring
EFE
Company Information
Website:https://www.edelmanfinancialengines.com/
Employees number:1,494
Number of followers:37,712
NAICS:52
Industry Type:Financial Services
Homepage:edelmanfinancialengines.com
EFE Risk Score (AI oriented)
Between 550 and 599
EFEFinancial Services
Updated:
24/04/2026
24/04/2026
595/1000
Very Poor
Ca
EFE Global Score (TPRM)
xxxx
EFEFinancial Services
Score locked

EFEVery Poor
Current Score
595Ca (VERY POOR)
01000
3 incidents
-59 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
604
JUNE 2026
602
MAY 2026
597
APRIL 2026
592
MARCH 2026
660
Breach
22 Mar 2026 • EFE
Edelman Financial Engines, Mercer Advisors, Cetera Financial, Ameriprise and Hightower Advisors: Cetera, Ameriprise Sued Over Data Breaches
Financial Firms Face Class Action Lawsuits Over Data Breaches
591
CRITICAL-69
AMEMEREDEHIGCET1775075723
Financial Firms Face Class Action Lawsuits Over Data Breaches as FINRA Launches Cyber Threat Portal
Cetera Financial and Ameriprise are the latest financial services firms embroiled in class action lawsuits over alleged data breaches, with customers accusing both companies of failing to safeguard sensitive client information.
In a lawsuit filed by California resident Jennifer Collier, Cetera is accused of negligence after an unauthorized actor accessed an employee’s email account last summer. A subsequent review in January revealed that client data including names, Social Security numbers, and account details may have been exposed. The suit argues that Cetera’s security measures were inadequate, leaving affected clients vulnerable to long-term identity theft and financial fraud.
Separately, Ameriprise faces a class action led by Pamela Caffrey, alleging a March 22 breach by the cybercriminal group ShinyHunters. The ransomware attack reportedly compromised Salesforce records containing personally identifiable information (PII) and over 200GB of internal data. Caffrey’s suit claims Ameriprise failed to notify victims, leaving them unaware of the exposure and at continued risk. The firm stated it contained the breach, confirmed no business disruptions, and asserted that the plaintiff’s PII was not impacted.
Both incidents follow a string of recent breaches targeting financial firms, including Mercer Advisors, Hightower Advisors, and Edelman Financial Engines.
Amid rising cyber threats, the Financial Industry Regulatory Authority (FINRA) has launched the Financial Intelligence Fusion Center, a secure portal for member firms to report and coordinate responses to cyber risks. Designed to provide actionable threat intelligence, the platform aims to bolster defenses, particularly for smaller firms lacking dedicated cybersecurity resources. FINRA CEO Robert Cook previously noted the center would leverage internal and external data to enhance risk mitigation.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
FEBRUARY 2026
656
JANUARY 2026
738
Breach
07 Jan 2026 • EFE
Edelman Financial Engines: Edelman Financial Engines Data Breach Lawsuit Investigation
Edelman Financial Engines Data Breach Exposes Sensitive Client Information
654
CRITICAL-84
EDE1770317444
Edelman Financial Engines Data Breach Exposes Sensitive Client Information
Edelman Financial Engines, a California-based financial planning and investment advisory firm, disclosed a data breach on January 7, 2026, after detecting unauthorized access to client information. The company, which serves approximately 1.27 million clients across 140 U.S. locations, confirmed that the incident exposed personally identifiable data, including names, dates of birth, addresses, phone numbers, emails, financial planning details, and Social Security numbers.
The breach affected 5,083 individuals in the U.S., with five cases reported in Maine. Edelman Financial Engines engaged external security experts to investigate the incident, terminated the unauthorized access, and filed disclosures with the attorneys general of California and Maine. Affected clients were notified in writing on January 28, 2026.
As part of its response, the company offered impacted individuals 24 months of complimentary credit and identity monitoring services through Kroll, including dark web monitoring, Social Security number scans, and fraud consultation. The law firm Shamis & Gentile P.A. is investigating potential compensation claims for those affected.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
DECEMBER 2025
738
NOVEMBER 2025
761
Cyber Attack
10 Nov 2025 • EFE
Cetera Financial, Ameriprise, Hightower Advisors, LPL Financial and Edelman Financial Engines: LPL Financial Reports Cybersecurity Breach
LPL Financial Cybersecurity Breach Affecting 1,581 Clients
737
CRITICAL-24
AMEHIGLPLEDE1777062318
LPL Financial Reports Cybersecurity Breach Affecting 1,581 Clients
LPL Financial disclosed a cybersecurity incident that led to unauthorized securities transactions and financial transfers in some client accounts. The breach, which occurred on November 10, 2025, was discovered 10 days later and reported to Maine’s Attorney General.
The attack stemmed from malware distributed via phishing messages, compromising a limited number of financial advisors’ devices and granting unauthorized access to LPL’s web-based advisor portal. While the firm found no direct evidence that sensitive client data was accessed, it could not rule out the possibility. A total of 1,581 clients were affected, including two in Maine.
Upon discovery, LPL halted the unauthorized activity, secured affected accounts, and restored impacted accounts to their original financial positions. The firm also contacted law enforcement, conducted an internal investigation, and implemented new technical safeguards to strengthen security. No ongoing compromise was detected. Affected clients were offered two years of complimentary Experian credit monitoring.
This incident follows a separate October 2025 breach at LPL, where foreign threat actors exploited advisor accounts in a "hack pump-and-dump" scheme to manipulate stock prices. LPL is among several financial firms including Cetera Financial, Ameriprise, Hightower Advisors, and Edelman Financial Engines targeted by cybercriminals in recent months. The ShinyHunters extortion group, linked to breaches at Ameriprise and Mercer Advisors, has been a recurring threat in these attacks. Many of these incidents have been exposed through class action lawsuits alleging inadequate data protection.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
OCTOBER 2025
761
SEPTEMBER 2025
761
AUGUST 2025
761
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for EFE ??
What was EFE's A.I Rankiteo Cyber Score in June 2026 ??
What was EFE's A.I Rankiteo Cyber Score in May 2026 ??
What was EFE's A.I Rankiteo Cyber Score in April 2026 ??
What was EFE's A.I Rankiteo Cyber Score in March 2026 ??
What was EFE's A.I Rankiteo Cyber Score in February 2026 ??
What was EFE's A.I Rankiteo Cyber Score in January 2026 ??
What was EFE's A.I Rankiteo Cyber Score in December 2025 ??
What was EFE's A.I Rankiteo Cyber Score in November 2025 ??
What was EFE's A.I Rankiteo Cyber Score in October 2025 ??
What was EFE's A.I Rankiteo Cyber Score in September 2025 ??
What was EFE's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on EFE's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with EFE ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view EFE's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?