Tr?id=566623520170033&ev=PageView&noscript=1

LPL and Ameriprise Notify Clients of Cybersecurity Incidents Involving Account Access

Posted on March 18th, 2026 at 12:28 PM
LPL and Ameriprise Notify Clients of Cybersecurity Incidents Involving Account Access

From the desk of Jim Eccleston at Eccleston Law

LPL Financial and Ameriprise Financial Services recently notified certain clients about separate cybersecurity incidents that exposed private information and, in one case, led to unauthorized trading activity. Both firms reported the matters to the Maine Attorney General, which publicly posts data breach disclosures. InvestmentNews reports that LPL submitted its notice on December 26, and Ameriprise followed on January 2.

According to client letters, LPL identified unauthorized securities transactions between September 30 and October 10 involving accounts maintained by clients of a small number of affiliated advisors. The firm stated that foreign threat actors accessed certain advisors' online accounts and executed trades as part of a "hack pump-and-dump" scheme designed to inflate stock prices artificially. According to InvestmentNews, the activity affected 53 client accounts.

LPL reported that it contacted law enforcement, retained outside experts, and launched an investigation. The firm stated it promptly contained the activity and confirmed that no ongoing issues remain. LPL also advised clients that the threat actors may have viewed certain personal information while accessing the compromised accounts.

Separately, Ameriprise disclosed an incident involving a phishing attack, as reported by InvestmentNews. On December 4, a financial advisor received an email that appeared to come from a client. The communication enabled a bad actor to gain potential access to or transmit certain client information for a limited period. Ameriprise indicated that 598 clients may have been affected.

In its notice, Ameriprise stated that it detected and contained the incident quickly and initiated an internal investigation to determine the scope of the exposure. According to InvestmentNews, the firm reported no evidence that anyone improperly used client information and confirmed that services continued without interruption.

According to InvestmentNews, industry observers have noted that cybersecurity risks increase when advisors transition between firms or rely on personal communication channels. Firms must maintain strict controls over client data, particularly during periods of advisor movement and recruiting activity.

Both incidents highlight the ongoing threat cyber actors pose to financial institutions and the sensitive information entrusted to advisors.

Eccleston Law LLC represents investors and financial advisors nationwide in securities, employment, transition, regulatory, and disciplinary matters.

Tags: eccleston, eccleston law, cybersecurity, data breach, unauthorized trading, lpl financial, ameriprise financial

Return to Archive

TESTIMONIALS

Previous
Next
Quotes Bigger

As a financial advisor with over 20 years of experience, I feel fortunate to call Jim my attorney and friend. He is a fantastic lawyer and trusted advisor. He is skilled in the matters necessary to do the job well. He uses his thoughtful approach and calm demeanor to achieve a positive outcome for the client. If you want to feel confident that nothing will be missed and that you will be represented in a highly professional manner, call Jim Eccleston.

Bill C. and Dan M.

LATEST NEWS AND ARTICLES

1782836587 Law
June 30, 2026
FINRA Signals Stronger Enforcement Focus on Reg BI, Excessive Trading, and Best Execution

The Financial Industry Regulatory Authority (FINRA) plans to intensify its enforcement efforts against Regulation Best Interest (Reg BI) violations, excessive trading, options trading, churning, and best execution failures after bringing a record number of retail investor protection cases in 2025, according to ThinkAdvisor.

1782744905 Law
June 29, 2026
Former Arvest Wealth Representative Sanctioned by FINRA Over Improper Use of Mistaken Commission Payment

The Financial Industry Regulatory Authority (FINRA) has suspended former Arvest Wealth representative Brandon Still for 18 months and fined him $5,000 after determining that he improperly used firm funds that were mistakenly deposited into his account.

1782497406 Law
June 26, 2026
FINRA Seeks to Make Remote Inspection Program Permanent

The Financial Industry Regulatory Authority (FINRA) is seeking approval from the Securities and Exchange Commission (SEC) to make its pandemic-era remote inspections program permanent before the current pilot is scheduled to expire in June 2027, according to AdvisorHub and FINRA's summary of its recent Board of Governors meeting.