Major Financial Data Breaches Hit 570K Americans This Week

AssetMark financial data breach exposes Social Security numbers and financial accounts of 570,000 Americans. Delaware North hospitality breach affects thousands more with driver's license exposure.

This week witnessed significant credential exposure affecting North American consumers, with two major data breaches highlighting ongoing vulnerabilities in financial and hospitality sectors. AssetMark's financial services breach exposed Social Security numbers and financial account information for 570,000 individuals, while Delaware North's hospitality breach compromised driver's license numbers and state identification data for thousands more.

AssetMark Financial Breach Exposes 570K Social Security Numbers

AssetMark discovered that an unauthorized actor accessed and downloaded files containing customer information on May 15, 2026, affecting the company's wealth management platform. The breach exposed Social Security numbers, financial account information, and government ID numbers across multiple states. Notice letters were issued to affected individuals on June 11, 2026, nearly a month after discovery.

This incident represents a particularly concerning exposure for North American consumers because Social Security numbers and financial account numbers are highly sensitive pieces of information that could lead to identity theft and financial fraud. The breach affected 15,085 Massachusetts residents, 1,643 Vermont residents and 359 Texas residents, with additional states likely impacted.

Delaware North Employee Account Compromise Affects Thousands

Delaware North identified suspicious activity in an employee's Microsoft account on January 28, 2026, discovering that an unauthorized actor had stolen copies of certain files the day prior. The hospitality company operates over 200 hotels, casinos, restaurants, sports venues and other locations worldwide.

The investigation determined that names, driver's license numbers, and state-issued identification numbers were contained in the exfiltrated files, with Social Security numbers also potentially exposed in some states. The breach affected 132 Maine residents, with notifications sent starting June 5, 2026. The four-month delay between breach discovery and notification raises concerns about incident response procedures.

What Individuals Should Do

Given the exposure of Social Security numbers and financial account data in the AssetMark breach, affected individuals should immediately monitor all financial accounts for unauthorized activity. Enable fraud alerts with credit bureaus and consider placing a credit freeze to prevent new account openings. For Delaware North victims, monitor for identity theft attempts involving driver's license misuse, particularly for vehicle purchases or rental applications.

Both breaches highlight the importance of unique passwords across all accounts. Threat actors often test stolen credentials against multiple financial platforms, making password reuse particularly dangerous following credential exposures.

What Businesses Should Do

These incidents demonstrate critical vulnerabilities in employee account security. As seen in May 2026 patterns, attackers did not break in; they logged in, with almost every major incident beginning with compromised credentials rather than technical flaws. Organizations should implement mandatory multi-factor authentication for all employee accounts accessing sensitive data, particularly Microsoft 365 and similar cloud platforms.

The extended notification timelines in both breaches suggest inadequate incident response procedures. Companies should establish predetermined breach notification workflows to meet regulatory requirements and minimize exposure windows for affected individuals.