One of the biggest asset managers in the world, Fidelity Investments, has disclosed a data breach that affected over 77,000 customers’ personal data. Two user accounts that had been created by unidentified attackers were connected to the incident, which happened between August 17 and August 19, 2024.
On August 19, Fidelity discovered the issue and acted right away to stop illegal access. According to a filing with the Attorney General of Maine, the hack exposed personal information but not account data.
Although 77,099 clients were impacted by the incident, Fidelity has not yet disclosed what data was taken, aside from names and other personal identifiers. To look into the event, Fidelity has brought in outside security specialists.
Michael Aalto, a spokesman for Fidelity, refused to elaborate when asked how two accounts resulted in the exposing of thousands of customer records. He did stress, though, that there had been no illegal account access. The attackers just looked at customer data instead.
Fidelity is providing people impacted with two years of free TransUnion credit monitoring and identity restoration services, despite the fact that it has not discovered any indication that the stolen data has been abused. Additionally, the business recommended its clients to stay vigilant by routinely checking their financial accounts, monitoring their credit histories, and reporting any questionable activity to their financial institution, local police enforcement, or the appropriate state body.
Fidelity Investments Life Insurance Company (FILI), a division of Fidelity Investments, also revealed a data breach that affected over 28,000 clients in March 2024.
Fidelity employs more than 75,000 associates in 11 countries, including the UK, India, and Germany, and has $14.1 trillion in assets under administration and $5.5 trillion under management.
