WFA
Company Details
Linkedin ID:
wells-fargo-advisors
Employees number:
14,565
Number of followers:
130,343
NAICS:
52
Industry Type:
Homepage:
wellsfargoadvisors.com
IP Addresses:
0
Company ID:
WEL_1538226
Scan Status:
In-progress
Wells Fargo Advisors Company CyberSecurity Posture
wellsfargoadvisors.com
With financial advisors serving our clients in all 50 states, Wells Fargo Advisors is headquartered in St. Louis. At the end of the day, we help our clients succeed financially. For us – our Financial Advisors and thousands of other team members – it's a commitment. It's about honoring our relationship with clients and being fully invested in their success. Investors’ needs are more complex now than at any time in history. There are the usual concerns that investors can plan for, but there are also those events when life happens. That’s why investors are increasingly looking for advice they can trust from a financial services firm which has experience and expertise, and an uncompromising dedication to its clients. Opinions and comments expressed by LinkedIn Members are those of the persons submitting them and do not necessarily represent our views. Additional guidelines can be found on wfa.com/social. Investment and Insurance Products are: * Not Insured by the FDIC or Any Federal Government Agency * Not a Deposit or Other Obligation of, or Guaranteed by, the Bank or Any Bank Affiliate * Subject to Investment Risks, Including Possible Loss of the Principal Amount Invested Wells Fargo recognizes and values the diversity of its employees, customers and business partners. EOE, M/F/D/V. Wells Fargo Advisors is a trade name used by Wells Fargo Clearing Services, LLC and Wells Fargo Advisors Financial Network, LLC, Members SIPC, separate registered broker-dealers and non-bank affiliates of Wells Fargo & Company. © 2021 - 2025 Wells Fargo Clearing Services, LLC. All rights reserved. PM-09182026-6068127.2.1 Wells Fargo Investment Institute, Inc. (WFII) is a registered investment adviser and wholly-owned subsidiary of Wells Fargo Bank, N.A., a bank affiliate of Wells Fargo & Company.
Wells Fargo Advisors A.I CyberSecurity Scoring
WFA Risk Score (AI oriented)Between 750 and 799
WFA
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
WFA Global Score (TPRM)XXXX
WFA
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
WFA Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Wells Fargo Advisors
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: On September 26, 2017, the California Office of the Attorney General reported that Wells Fargo Advisors experienced a data breach on July 6, 2017. The breach involved client information being inadvertently provided to another law firm. The compromised information included client names, account numbers, and social security numbers. The number of individuals affected by this breach is unknown.
WFA Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for WFA
Incidents vs Financial Services Industry Average (This Year)
No incidents recorded for Wells Fargo Advisors in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Wells Fargo Advisors in 2025.
Incident Types WFA vs Financial Services Industry Avg (This Year)
No incidents recorded for Wells Fargo Advisors in 2025.
Incident History — WFA (X = Date, Y = Severity)
WFA cyber incidents detection timeline including parent company and subsidiaries
WFA Company Subsidiaries
With financial advisors serving our clients in all 50 states, Wells Fargo Advisors is headquartered in St. Louis. At the end of the day, we help our clients succeed financially. For us – our Financial Advisors and thousands of other team members – it's a commitment. It's about honoring our relationship with clients and being fully invested in their success. Investors’ needs are more complex now than at any time in history. There are the usual concerns that investors can plan for, but there are also those events when life happens. That’s why investors are increasingly looking for advice they can trust from a financial services firm which has experience and expertise, and an uncompromising dedication to its clients. Opinions and comments expressed by LinkedIn Members are those of the persons submitting them and do not necessarily represent our views. Additional guidelines can be found on wfa.com/social. Investment and Insurance Products are: * Not Insured by the FDIC or Any Federal Government Agency * Not a Deposit or Other Obligation of, or Guaranteed by, the Bank or Any Bank Affiliate * Subject to Investment Risks, Including Possible Loss of the Principal Amount Invested Wells Fargo recognizes and values the diversity of its employees, customers and business partners. EOE, M/F/D/V. Wells Fargo Advisors is a trade name used by Wells Fargo Clearing Services, LLC and Wells Fargo Advisors Financial Network, LLC, Members SIPC, separate registered broker-dealers and non-bank affiliates of Wells Fargo & Company. © 2021 - 2025 Wells Fargo Clearing Services, LLC. All rights reserved. PM-09182026-6068127.2.1 Wells Fargo Investment Institute, Inc. (WFII) is a registered investment adviser and wholly-owned subsidiary of Wells Fargo Bank, N.A., a bank affiliate of Wells Fargo & Company.
Loading...
WFA Similar Companies
S&P Global provides governments, businesses, and individuals with market data, expertise, and technology solutions for confident decision-making. Our services span from global energy solutions to sustainable finance solutions. From helping our customers perform investment analysis to guiding them th
We help make money work for the world — managing it, moving it and keeping it safe. As a leading global financial services company at the center of the world’s financial system, we touch nearly 20% of the world’s investable assets. Today we help over 90% of Fortune 100 companies and nearly all the t
J.P. Morgan
J.P. Morgan is a leader in financial services, offering solutions to clients in more than 100 countries with one of the most comprehensive global product platforms available. We have been helping our clients to do business and manage their wealth for more than 200 years. Our business has been built
HDB Financial Services (HDBFS) is a leading Non-Banking Financial Company (NBFC) that caters to the growing needs of an Aspirational India, serving both Individual & Business Clients The lines of business include - Lending and BPO Services. Incorporated in 2007, HDB is a well-established business wi
Imagine a world where people live healthier, more enhanced and protected lives… A world in which each organisation is a powerful influencer and responsible corporate citizen, committed to being a force for social good. As a leading innovator in healthcare, wellness, insurance, investments, financial
Otkritie
OTKRITIE Financial Corporation is one of the most dynamic and fastest growing investment banks in Russia. The company has been operating on the stock market as a broker, asset manager, financial advisor and investment bank since 1995. OTKRITIE FC has become a trusted partner for many Russian and int
Ameriprise Financial Services, LLC
At Ameriprise Financial, we have been helping people feel more confident about their financial future for 130 years. With extensive investment advice, asset management and insurance capabilities and a nationwide network of approximately 10,000 financial advisors*, we have the strength and expertise
Barclays
Barclays is a British universal bank. Our vision is to be the UK-centred leader in global finance. We are a diversified bank with comprehensive UK consumer, corporate and wealth and private banking franchises, a leading investment bank and a strong, specialist US consumer bank. Through these five di
CIMB
CIMB Group is a leading ASEAN universal bank, one of the largest Asian investment banks and one of the world's largest Islamic banks. We are headquartered in Kuala Lumpur, Malaysia and offer consumer banking, commercial banking, wholesale banking, Islamic banking, and asset management products and
.png)
WFA CyberSecurity News
November 17, 2025 08:00 AM
Wells Fargo nabs $3B Merrill team in latest West Coast move
The Munster Freeman Group has joined the wirehouse in California, following another billion-dollar team's departure from Merrill Lynch last...
October 31, 2025 07:00 AM
&Partners Adds Two More Wells Fargo Teams
&Partners, a St. Louis-based hybrid broker/dealer launched by David Kowach, the former president and CEO of Wells Fargo Advisors,...
September 11, 2025 07:00 AM
$1B Ameriprise Team Joins Wells Fargo’s FiNet
Wells Fargo continues its push to bring advisors to its independent contractor channel with an 11-person advisor team based in Indianapolis...
August 28, 2025 07:00 AM
Another former wirehouse leader – Wells Fargo’s Jim Hays – lands in RIA world.
RIAs like IFC Advisors directly compete against firms like Wells Fargo Advisors for financial advisors.
August 28, 2025 07:00 AM
David Kowach’s &Partners Scores Another Win From Wells Fargo
The hybrid broker/dealer adds the Broadcloth Wealth team, led by David Nickel, who left Wells Fargo Advisors after 34 years.
August 20, 2025 07:00 AM
Advisor moves: Wells Fargo FiNet, LPL Financial, Raymond James, Janney, Ameriprise
Several major wealth firms have announced the addition of experienced advisors managing more than $750 million in combined assets.
August 18, 2025 07:00 AM
Former Wells Fargo Advisors Employee Alleges Discrimination in New Lawsuit
According to the suit, Lisa Krugler didn't get an explanation for her termination as a client services associate with the firm.
August 06, 2025 07:00 AM
TOP NEXT-GEN WEALTH ADVISORS
With the average age of a financial advisor in 2025 hovering around 56, the wealth management industry faces a looming succession crisis.
July 31, 2025 03:56 PM
When Values No Longer Align: An Ex-Wells Fargo Advisor’s Leap to Independence
There are plenty of stories about advisors going independent, but few are as honest, candid, or humble as this one. After more than 25 years at Wells Fargo,...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
WFA CyberSecurity History Information
Official Website of Wells Fargo Advisors
The official website of Wells Fargo Advisors is http://www.wellsfargoadvisors.com.
Wells Fargo Advisors’s AI-Generated Cybersecurity Score
According to Rankiteo, Wells Fargo Advisors’s AI-generated cybersecurity score is 768, reflecting their Fair security posture.
How many security badges does Wells Fargo Advisors’ have ?
According to Rankiteo, Wells Fargo Advisors currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Wells Fargo Advisors have SOC 2 Type 1 certification ?
According to Rankiteo, Wells Fargo Advisors is not certified under SOC 2 Type 1.
Does Wells Fargo Advisors have SOC 2 Type 2 certification ?
According to Rankiteo, Wells Fargo Advisors does not hold a SOC 2 Type 2 certification.
Does Wells Fargo Advisors comply with GDPR ?
According to Rankiteo, Wells Fargo Advisors is not listed as GDPR compliant.
Does Wells Fargo Advisors have PCI DSS certification ?
According to Rankiteo, Wells Fargo Advisors does not currently maintain PCI DSS compliance.
Does Wells Fargo Advisors comply with HIPAA ?
According to Rankiteo, Wells Fargo Advisors is not compliant with HIPAA regulations.
Does Wells Fargo Advisors have ISO 27001 certification ?
According to Rankiteo,Wells Fargo Advisors is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Wells Fargo Advisors
Wells Fargo Advisors operates primarily in the Financial Services industry.
Number of Employees at Wells Fargo Advisors
Wells Fargo Advisors employs approximately 14,565 people worldwide.
Subsidiaries Owned by Wells Fargo Advisors
Wells Fargo Advisors presently has no subsidiaries across any sectors.
Wells Fargo Advisors’s LinkedIn Followers
Wells Fargo Advisors’s official LinkedIn profile has approximately 130,343 followers.
NAICS Classification of Wells Fargo Advisors
Wells Fargo Advisors is classified under the NAICS code 52, which corresponds to Finance and Insurance.
Wells Fargo Advisors’s Presence on Crunchbase
No, Wells Fargo Advisors does not have a profile on Crunchbase.
Wells Fargo Advisors’s Presence on LinkedIn
Yes, Wells Fargo Advisors maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/wells-fargo-advisors.
Cybersecurity Incidents Involving Wells Fargo Advisors
As of November 27, 2025, Rankiteo reports that Wells Fargo Advisors has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Wells Fargo Advisors has an estimated 29,540 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Wells Fargo Advisors ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Wells Fargo Advisors Data Breach
Description: On September 26, 2017, the California Office of the Attorney General reported that Wells Fargo Advisors experienced a data breach on July 6, 2017, where client information was inadvertently provided to another law firm. The types of information compromised included client names, account numbers, and social security numbers, with the number of individuals affected being unknown.
Date Detected: 2017-07-06
Date Publicly Disclosed: 2017-09-26
Type: Data Breach
Attack Vector: Inadvertent Disclosure
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach WEL659072525
Data Compromised: Client names, Account numbers, Social security numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Client Names, Account Numbers, Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach WEL659072525
Entity Name: Wells Fargo Advisors
Entity Type: Financial Services
Industry: Finance
Location: California
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach WEL659072525
Type of Data Compromised: Client names, Account numbers, Social security numbers
Sensitivity of Data: High
References
Where can I find more information about each incident ?
Incident : Data Breach WEL659072525
Source: California Office of the Attorney General
Date Accessed: 2017-09-26
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2017-09-26.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2017-07-06.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2017-09-26.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were client names, account numbers, social security numbers and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were account numbers, client names and social security numbers.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is California Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=wells-fargo-advisors' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
