Wealth management and advisory firm.
In February 2026, the extortion group ShinyHunters claimed a breach of Pathstone Family Office, LLC, an ultra-high-net-worth wealth manager with about $170 billion in assets, alleging total exfiltration of its Salesforce environment and internal file systems (~15 GB compressed). The actor claimed roughly 641,000 records and detailed profiles of about 91,257 clients including financial intelligence, client contracts, legal paperwork, and estate-planning details, and set a March 2, 2026 ransom deadline. A DataBreach.com parse of circulating data confirmed contact-level identifiers (names, emails, phone numbers, street addresses) for about 48,246 individuals; the richer financial/estate data remains an actor claim not independently confirmed in circulation. Pathstone had not officially confirmed the incident as of the latest reporting.
ObscureIQ assessment: High risk of identity theft, account fraud, affluent-target targeting, and advisor impersonation. Wealth-management data is especially valuable because it signals significant assets and trusted financial relationships.
Because inclusion in Pathstone’s data identifies someone as an ultra-high-net-worth client, exposure carries outsized risk of targeted spear-phishing, advisor impersonation, extortion, and even physical-security threats to wealthy families, beyond ordinary identity-theft concerns. ShinyHunters claims the stolen Salesforce dataset includes detailed client profiles with financial intelligence and estate-planning details, which if released would sharply amplify these risks.
Pathstone Family Office, LLC is a large U.S. registered investment advisor and multi-family office serving ultra-high-net-worth individuals and families, operating at least 22 offices nationwide and overseeing more than $170 billion in assets. It aggregates highly sensitive financial, estate, tax, beneficiary, and contact information to manage assets and coordinate advisory work. (Not to be confused with the same-named behavioral-health nonprofit Pathstone Corporation.)
Wealth-management firms collect highly sensitive investor identity, financial records, account data, beneficiary information, and advisory relationship records across planning and asset-management workflows.
ShinyHunters listed Pathstone Family Office on its extortion site on February 27, 2026, with a March 2, 2026 ransom deadline, and later advertised a ~15 GB compressed Salesforce database for sale. Pathstone had not officially confirmed the incident as of the latest reporting; class-action investigations were opened. The attack is part of a wave of ShinyHunters Salesforce-targeted breaches of wealth-advisory firms (also naming Mercer Advisors and Beacon Pointe).
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
Attribution and method are based on available breach intelligence. Reported attack vector: Credential Theft.
If you believe your information may be included:
In February 2026, the extortion group ShinyHunters claimed a breach of Pathstone Family Office, LLC, an ultra-high-net-worth wealth manager with about $170 billion in assets, alleging total exfiltration of its Salesforce environment and internal file systems (~15 GB compressed). The actor claimed…
Verified fields include Email Address, Full Name, Phone Number, Physical Address.
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Every claim on this page is traceable. This breach draws on:
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation