Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Hightower Advisors

Hightower Advisors Vendor Cyber Rating & Cyber Score

hightoweradvisors.com

Hightower is a wealth management firm that provides investment, financial and retirement planning services to individuals, foundations and family offices, as well as 401K consulting and cash management services to corporations. Hightower’s capital solutions, operational support services, size and scale empower its vibrant community of independent-minded wealth advisors to grow their businesses and help their clients achieve their vision of “well-th. rebalanced.” Based in Chicago with advisors across the U.S., the firm operates as a registered investment advisor (RIA). Learn more about Hightower’s collaborative business model at www.hightoweradvisors.com.


Hightower Advisors A.I CyberSecurity Scoring

Hightower Advisors
Company Information
Website:http://www.hightoweradvisors.com
Employees number:629
Number of followers:28,750
NAICS:52
Industry Type:Financial Services
Homepage:hightoweradvisors.com
Hightower Advisors Risk Score (AI oriented)
Between 550 and 599
logo
Hightower AdvisorsFinancial Services
Updated:
24/04/2026
580/1000
Very Poor
Ca
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Hightower Advisors Global Score (TPRM)
xxxx
logo
Hightower AdvisorsFinancial Services
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Hightower Advisors
Hightower AdvisorsVery Poor
Current Score
580Ca (VERY POOR)
01000
3 incidents
-63 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
589Before Incident
JUNE 2026
588Before Incident
MAY 2026
584Before Incident
APRIL 2026
577Before Incident
MARCH 2026
646Before Incident
Breach
22 Mar 2026Hightower Advisors
Edelman Financial Engines, Mercer Advisors, Cetera Financial, Ameriprise and Hightower Advisors: Cetera, Ameriprise Sued Over Data Breaches

Financial Firms Face Class Action Lawsuits Over Data Breaches

576After Incident
CRITICAL-70
AMEMEREDEHIGCET1775075723
Financial Firms Face Class Action Lawsuits Over Data Breaches as FINRA Launches Cyber Threat Portal Cetera Financial and Ameriprise are the latest financial services firms embroiled in class action lawsuits over alleged data breaches, with customers accusing both companies of failing to safeguard sensitive client information. In a lawsuit filed by California resident Jennifer Collier, Cetera is accused of negligence after an unauthorized actor accessed an employee’s email account last summer. A subsequent review in January revealed that client data including names, Social Security numbers, and account details may have been exposed. The suit argues that Cetera’s security measures were inadequate, leaving affected clients vulnerable to long-term identity theft and financial fraud. Separately, Ameriprise faces a class action led by Pamela Caffrey, alleging a March 22 breach by the cybercriminal group ShinyHunters. The ransomware attack reportedly compromised Salesforce records containing personally identifiable information (PII) and over 200GB of internal data. Caffrey’s suit claims Ameriprise failed to notify victims, leaving them unaware of the exposure and at continued risk. The firm stated it contained the breach, confirmed no business disruptions, and asserted that the plaintiff’s PII was not impacted. Both incidents follow a string of recent breaches targeting financial firms, including Mercer Advisors, Hightower Advisors, and Edelman Financial Engines. Amid rising cyber threats, the Financial Industry Regulatory Authority (FINRA) has launched the Financial Intelligence Fusion Center, a secure portal for member firms to report and coordinate responses to cyber risks. Designed to provide actionable threat intelligence, the platform aims to bolster defenses, particularly for smaller firms lacking dedicated cybersecurity resources. FINRA CEO Robert Cook previously noted the center would leverage internal and external data to enhance risk mitigation.
INCIDENT DETAILS -
TYPE
Data BreachRansomware
IMPACT
NamesSocial Security numbersAccount detailsPersonally Identifiable Information (PII)Internal dataEmail AccountSalesforce RecordsOperational Impact: No business disruptions (Ameriprise)Class Action LawsuitsIdentity Theft Risk: Long-term identity theft and financial fraud
DATA BREACH
Personally Identifiable Information (PII)Internal DataSensitivity Of Data: HighData Exfiltration: 200GB of internal data (Ameriprise)NamesSocial Security numbersAccount details
FEBRUARY 2026
644Before Incident
JANUARY 2026
734Before Incident
Breach
08 Jan 2026Hightower Advisors
Hightower Securities, Hightower Trust Company, Hightower Advisors, Hightower Holding and LLC: Hightower Holding, LLC Data Breach Investigation

Hightower Holding Data Breach Exposes Personal Information of Over 131,000 Individuals

640After Incident
CRITICAL-94
HIG1774370113
Hightower Holding Data Breach Exposes Personal Information of Over 131,000 Individuals Hightower Holding, LLC, the parent company of Chicago-based wealth management firm Hightower Advisors, disclosed a data breach affecting 131,483 individuals in the U.S., including 1,557 Maine residents. The incident was discovered on January 9, 2026, when the company identified unauthorized access to its systems via a compromised user account. A subsequent investigation, conducted with third-party cybersecurity experts, revealed that between January 8 and 9, 2026, unauthorized parties downloaded files containing sensitive personal data. The exposed information included names, Social Security numbers, and driver’s license numbers. Hightower Holding secured its network following the breach and began notifying affected individuals via written letters on March 23, 2026. The company operates multiple subsidiaries, including Hightower Securities and Hightower Trust Company, which provide investment management, trust, and retirement services. Class action law firm Shamis & Gentile P.A. is investigating potential legal claims on behalf of those impacted. The breach underscores the ongoing risks to financial services firms handling sensitive client data.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Names, Social Security numbers, driver’s license numbersLegal Liabilities: Potential legal claims under investigationIdentity Theft Risk: High
DATA BREACH
Type Of Data Compromised: Personal InformationNumber Of Records Exposed: 131,483Sensitivity Of Data: HighData Exfiltration: Files downloaded by unauthorized partiesPersonally Identifiable Information: Names, Social Security numbers, driver’s license numbers
DECEMBER 2025
734Before Incident
NOVEMBER 2025
758Before Incident
Cyber Attack
10 Nov 2025Hightower Advisors
Cetera Financial, Ameriprise, Hightower Advisors, LPL Financial and Edelman Financial Engines: LPL Financial Reports Cybersecurity Breach

LPL Financial Cybersecurity Breach Affecting 1,581 Clients

733After Incident
CRITICAL-25
AMEHIGLPLEDE1777062318
LPL Financial Reports Cybersecurity Breach Affecting 1,581 Clients LPL Financial disclosed a cybersecurity incident that led to unauthorized securities transactions and financial transfers in some client accounts. The breach, which occurred on November 10, 2025, was discovered 10 days later and reported to Maine’s Attorney General. The attack stemmed from malware distributed via phishing messages, compromising a limited number of financial advisors’ devices and granting unauthorized access to LPL’s web-based advisor portal. While the firm found no direct evidence that sensitive client data was accessed, it could not rule out the possibility. A total of 1,581 clients were affected, including two in Maine. Upon discovery, LPL halted the unauthorized activity, secured affected accounts, and restored impacted accounts to their original financial positions. The firm also contacted law enforcement, conducted an internal investigation, and implemented new technical safeguards to strengthen security. No ongoing compromise was detected. Affected clients were offered two years of complimentary Experian credit monitoring. This incident follows a separate October 2025 breach at LPL, where foreign threat actors exploited advisor accounts in a "hack pump-and-dump" scheme to manipulate stock prices. LPL is among several financial firms including Cetera Financial, Ameriprise, Hightower Advisors, and Edelman Financial Engines targeted by cybercriminals in recent months. The ShinyHunters extortion group, linked to breaches at Ameriprise and Mercer Advisors, has been a recurring threat in these attacks. Many of these incidents have been exposed through class action lawsuits alleging inadequate data protection.
INCIDENT DETAILS -
TYPE
Cybersecurity Breach
MOTIVATION
Unauthorized financial transactions
IMPACT
Financial Loss: Unauthorized securities transactions and financial transfersData Compromised: Possibility of sensitive client data access (not confirmed)Systems Affected: Web-based advisor portalOperational Impact: Halted unauthorized activity, secured affected accounts, and restored impacted accountsLegal Liabilities: Class action lawsuits alleging inadequate data protectionIdentity Theft Risk: High (credit monitoring offered)
DATA BREACH
Type Of Data Compromised: Client account information (possibility of sensitive data)Number Of Records Exposed: 1581Sensitivity Of Data: High (financial and personal data)
OCTOBER 2025
758Before Incident
SEPTEMBER 2025
758Before Incident
AUGUST 2025
758Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Hightower Advisors ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in June 2026 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Hightower Advisors's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on Hightower Advisors's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Hightower Advisors ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Hightower Advisors's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?
Hightower Advisors Cyber Scoring History | Rankiteo