The breach occurred on March 2 but was discovered on March 18, according to the Maine attorney general’s office.
Ameriprise Financial Inc. has disclosed a data breach that affected 47,876 customers, according to a filing with the Maine Attorney General’s office. The incident, which occurred on March 2 and was discovered on March 18, involved unauthorized access to certain stored data and files, raising concerns about the security of customer information.
The company stated that the breach did not disrupt business operations, but confirmed that unauthorized actors gained access to sensitive data. While Ameriprise has not specified the exact type of information exposed, it acknowledged that personally identifiable information (PII) belonging to a limited number of individuals may have been impacted.
In response to the incident, Ameriprise said it is taking appropriate measures, including notifying affected individuals and offering complimentary credit and identity monitoring services. Customers impacted by the breach have been offered 12 months of Equifax Complete Premier services to help safeguard against potential identity theft and fraud.
The breach affected customers across multiple states, including 335 residents in Maine and 256 residents in Rhode Island, as reported in separate filings with state authorities. Notifications have been issued to impacted individuals, outlining the steps they can take to protect their personal information.
Shortly after the initial disclosure, a ransomware group reportedly claimed responsibility for a separate breach of Ameriprise’s data on March 22. The situation escalated further with lawsuits filed on March 27 and April 2 in the U.S. District Court for the District of Minnesota. The legal complaints allege that Ameriprise failed to adequately protect customers’ personally identifiable information, potentially exposing them to financial and identity-related risks.
The incident highlights the growing threat of cyberattacks targeting financial services firms, where large volumes of sensitive customer data make such organizations prime targets for threat actors. It also underscores the increasing legal and regulatory scrutiny companies face following data breaches, particularly when customer information is compromised.
In a related development, OneDigital Investment Advisors LLC recently reported a separate data breach involving up to 28,414 individuals. The breach, which occurred in August 2025, exposed personal data including names and Social Security numbers, though the specific information compromised varied by customer.
As investigations continue, the Ameriprise breach serves as another reminder of the critical need for robust data protection strategies and proactive cybersecurity measures in the financial services sector, where the consequences of data exposure can be significant for both organizations and their customers.
Recommended Cyber Technology News :
- Seiko US Website Data Breach Sparks Security Warning
- Indonesia Suspends Game Ratings After Data Breach
- Fiverr Cloud Data Breach Leaks Sensitive User Data
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
