AssetMark Data Breach Class Action Lawsuit Investigation
Abington Cole + Ellery is investigating potential legal claims related to the AssetMark data breach, which reportedly affected about 570,000 individuals and may have exposed NAME / ADDRESS / SSN / FINANCIAL DATA / TAX ID DATA.
Published June 12, 2026 | Last updated June 12, 2026
Reviewed by Cornelius P. Dukelow -- licensed lawyer and registered patent attorney.
JOIN THIS LAWSUIT: If you are interested in potentially volunteering to serve as a class representative in a class action lawsuit against AssetMark, please submit your information to be considered:
You may also open the form here: AssetMark Data Breach Lawsuit Form. An attorney-client relationship is not formed by submitting information through this website.
What happened in the AssetMark data breach?
AssetMark recently disclosed a data security incident involving personal information connected to its custodial and recordkeeping services for financial advisors and their clients. Public breach listings and related notices indicate that the incident was reported to the Texas Attorney General on May 8, 2026, and that affected individuals were notified by U.S. mail. The incident appears to have stemmed from a sophisticated phishing attack that compromised the credentials of one AssetMark employee, after which the company determined that certain client information may have been exposed. The information reportedly varied by person but may have included names, addresses, account numbers, Social Security numbers, Tax ID numbers, and, in some notices, government identification numbers. Publicly available state-level reports identified at least 359 affected Texas residents and 1,643 affected Vermont residents, though those figures do not necessarily represent the full national total. The Oregon Department of Justice reports that a total of 570,000 people were affected. AssetMark reportedly stated that client assets were not compromised, and that login credentials, banking information, and core operating systems were not affected. The company has notified affected individuals, offered credit monitoring, and added security measures and monitoring protocols following the incident.
How did the breach occur?
The AssetMark data breach was reportedly the result of a phishing attack that compromised the credentials of one AssetMark employee.
When did the breach occur?
The AssetMark data breach reportedly took place on or around May of 2026.
How many people were affected by the breach?
Approximately 570,000 individuals were reportedly affected by the AssetMark data breach.
What information was exposed in the breach?
- Breached data reportedly may include, but is not necessarily limited to:
- name
- address
- Social Security number
- account numbers
- Tax ID numbers
- government identification numbers
Has AssetMark offered free credit monitoring and/or identity theft protection services?
Yes. As a result of the data breach, AssetMark is reportedly offering free credit monitoring and/or identity theft protection services to affected individuals.
AssetMark data breach timeline:
| Date | Event |
|---|---|
| UNDISCLOSED PUBLICLY | Unauthorized activity began. |
| May of 2026 | AssetMark discovered the incident. |
| UNDISCLOSED PUBLICLY | Unauthorized activity ended. |
| UNDISCLOSED PUBLICLY | Data breach investigation concluded. |
| On or around June 11, 2026 | AssetMark began notifying affected individuals. |
Who is AssetMark?
AssetMark is a Concord, California-based wealth management platform that supports independent financial advisors with technology, investment management, portfolio construction, reporting, consulting, and operational tools. The company works through AssetMark, Inc. and affiliated businesses, including AssetMark Trust Company, Voyant, and Adhesion Wealth Advisor Solutions, to help advisors serve client households and manage portfolios more efficiently. AssetMark is registered with the U.S. Securities and Exchange Commission as an investment adviser and, following its 2024 acquisition by GTCR, operates as a privately held company rather than a publicly traded one. Its business is best understood as infrastructure for advisory practices: a platform that combines investment access, service support, and practice-management resources so advisors can spend more time on client relationships and financial planning.
What should affected individuals do?
Victims of the AssetMark data breach should first read the notice carefully, determine what information was involved, and enroll in any free credit monitoring offered; because public reports indicate that exposed data may have included names and Social Security numbers, they should also consider placing a free credit freeze with Equifax, Experian, and TransUnion, which the FTC says can help prevent new accounts from being opened in their name and does not affect credit scores. They should monitor bank, investment, retirement, and credit-card accounts for unusual activity, review credit reports for accounts or inquiries they do not recognize, use strong unique passwords and multi-factor authentication, and be cautious of phishing calls, texts, or emails that claim to be from AssetMark or a financial advisor, especially if they create urgency or ask for login codes. Anyone who sees signs of identity theft should report it through IdentityTheft.gov and follow the recovery plan generated there.
Sources and additional information about the breach:
FAQ - Frequently Asked Questions
For more information about steps you can take to possibly reduce the chances harm arising from a data breach, please review the following article: What are some steps you can take if you've been the victim of a data breach?
This website is not associated with nor authorized by AssetMark or any affiliated companies. If you have received any other data breach notifications, you may to review Abington Cole + Ellery's current list of data breach investigations.