// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-hibpDTG 0600Z
ColdRecon / Breach Radar / Betterment
Breach Record

Betterment

DISCLOSED 2026-01-09 · STOLEN CREDS · 1,435,174 RECORDS EXPOSED

In January 2026, the automated investment platform Betterment confirmed it had suffered a data breach attributed to a social engineering attack. As part of the incident, Betterment customers received fraudulent crypto-related messages promising high returns if funds were sent to an attacker-controlled cryptocurrency wallet. The breach exposed 1.4M unique email addresses,...

The record

What we know

Disclosed
2026-01-09
Attack vector
Stolen Creds
Records exposed
1,435,174
Domain
betterment.com
Data classes exposed
Dates of birthDevice informationEmail addressesEmployersGeographic locationsJob titlesNamesPhone numbersPhysical addresses
Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the Betterment disclosure. It updates if new public reporting emerges. All tracked breaches →

Betterment just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →