Hightower Advisors A.I CyberSecurity Scoring
Hightower Advisors
Company Information
Website:http://www.hightoweradvisors.com
Employees number:629
Number of followers:28,750
NAICS:52
Industry Type:Financial Services
Homepage:hightoweradvisors.com
Hightower Advisors Risk Score (AI oriented)
Between 550 and 599
Hightower AdvisorsFinancial Services
Updated:
24/04/2026
24/04/2026
580/1000
Very Poor
Ca
Hightower Advisors Global Score (TPRM)
xxxx
Hightower AdvisorsFinancial Services
Score locked

Hightower AdvisorsVery Poor
Current Score
580Ca (VERY POOR)
01000
3 incidents
-63 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
589
JUNE 2026
588
MAY 2026
584
APRIL 2026
577
MARCH 2026
646
Breach
22 Mar 2026 • Hightower Advisors
Edelman Financial Engines, Mercer Advisors, Cetera Financial, Ameriprise and Hightower Advisors: Cetera, Ameriprise Sued Over Data Breaches
Financial Firms Face Class Action Lawsuits Over Data Breaches
576
CRITICAL-70
AMEMEREDEHIGCET1775075723
Financial Firms Face Class Action Lawsuits Over Data Breaches as FINRA Launches Cyber Threat Portal
Cetera Financial and Ameriprise are the latest financial services firms embroiled in class action lawsuits over alleged data breaches, with customers accusing both companies of failing to safeguard sensitive client information.
In a lawsuit filed by California resident Jennifer Collier, Cetera is accused of negligence after an unauthorized actor accessed an employee’s email account last summer. A subsequent review in January revealed that client data including names, Social Security numbers, and account details may have been exposed. The suit argues that Cetera’s security measures were inadequate, leaving affected clients vulnerable to long-term identity theft and financial fraud.
Separately, Ameriprise faces a class action led by Pamela Caffrey, alleging a March 22 breach by the cybercriminal group ShinyHunters. The ransomware attack reportedly compromised Salesforce records containing personally identifiable information (PII) and over 200GB of internal data. Caffrey’s suit claims Ameriprise failed to notify victims, leaving them unaware of the exposure and at continued risk. The firm stated it contained the breach, confirmed no business disruptions, and asserted that the plaintiff’s PII was not impacted.
Both incidents follow a string of recent breaches targeting financial firms, including Mercer Advisors, Hightower Advisors, and Edelman Financial Engines.
Amid rising cyber threats, the Financial Industry Regulatory Authority (FINRA) has launched the Financial Intelligence Fusion Center, a secure portal for member firms to report and coordinate responses to cyber risks. Designed to provide actionable threat intelligence, the platform aims to bolster defenses, particularly for smaller firms lacking dedicated cybersecurity resources. FINRA CEO Robert Cook previously noted the center would leverage internal and external data to enhance risk mitigation.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
FEBRUARY 2026
644
JANUARY 2026
734
Breach
08 Jan 2026 • Hightower Advisors
Hightower Securities, Hightower Trust Company, Hightower Advisors, Hightower Holding and LLC: Hightower Holding, LLC Data Breach Investigation
Hightower Holding Data Breach Exposes Personal Information of Over 131,000 Individuals
640
CRITICAL-94
HIG1774370113
Hightower Holding Data Breach Exposes Personal Information of Over 131,000 Individuals
Hightower Holding, LLC, the parent company of Chicago-based wealth management firm Hightower Advisors, disclosed a data breach affecting 131,483 individuals in the U.S., including 1,557 Maine residents. The incident was discovered on January 9, 2026, when the company identified unauthorized access to its systems via a compromised user account.
A subsequent investigation, conducted with third-party cybersecurity experts, revealed that between January 8 and 9, 2026, unauthorized parties downloaded files containing sensitive personal data. The exposed information included names, Social Security numbers, and driver’s license numbers.
Hightower Holding secured its network following the breach and began notifying affected individuals via written letters on March 23, 2026. The company operates multiple subsidiaries, including Hightower Securities and Hightower Trust Company, which provide investment management, trust, and retirement services.
Class action law firm Shamis & Gentile P.A. is investigating potential legal claims on behalf of those impacted. The breach underscores the ongoing risks to financial services firms handling sensitive client data.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
DECEMBER 2025
734
NOVEMBER 2025
758
Cyber Attack
10 Nov 2025 • Hightower Advisors
Cetera Financial, Ameriprise, Hightower Advisors, LPL Financial and Edelman Financial Engines: LPL Financial Reports Cybersecurity Breach
LPL Financial Cybersecurity Breach Affecting 1,581 Clients
733
CRITICAL-25
AMEHIGLPLEDE1777062318
LPL Financial Reports Cybersecurity Breach Affecting 1,581 Clients
LPL Financial disclosed a cybersecurity incident that led to unauthorized securities transactions and financial transfers in some client accounts. The breach, which occurred on November 10, 2025, was discovered 10 days later and reported to Maine’s Attorney General.
The attack stemmed from malware distributed via phishing messages, compromising a limited number of financial advisors’ devices and granting unauthorized access to LPL’s web-based advisor portal. While the firm found no direct evidence that sensitive client data was accessed, it could not rule out the possibility. A total of 1,581 clients were affected, including two in Maine.
Upon discovery, LPL halted the unauthorized activity, secured affected accounts, and restored impacted accounts to their original financial positions. The firm also contacted law enforcement, conducted an internal investigation, and implemented new technical safeguards to strengthen security. No ongoing compromise was detected. Affected clients were offered two years of complimentary Experian credit monitoring.
This incident follows a separate October 2025 breach at LPL, where foreign threat actors exploited advisor accounts in a "hack pump-and-dump" scheme to manipulate stock prices. LPL is among several financial firms including Cetera Financial, Ameriprise, Hightower Advisors, and Edelman Financial Engines targeted by cybercriminals in recent months. The ShinyHunters extortion group, linked to breaches at Ameriprise and Mercer Advisors, has been a recurring threat in these attacks. Many of these incidents have been exposed through class action lawsuits alleging inadequate data protection.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
OCTOBER 2025
758
SEPTEMBER 2025
758
AUGUST 2025
758
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Hightower Advisors ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in June 2026 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in May 2026 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in April 2026 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in March 2026 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in February 2026 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in January 2026 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in December 2025 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in November 2025 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in October 2025 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in September 2025 ??
What was Hightower Advisors's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Hightower Advisors's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Hightower Advisors ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Hightower Advisors's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?