California’s Tomren Wealth Management recently notified clients of a server breach that occurred between February 21 and March 6 of this year (h/t DataBreaches.net).
The notification letter [PDF file] states that while forensic investigators found that spamming software had been loaded onto the server, it’s unclear whether the attacker also accessed any clients’ personal information.
Still, the letter states, the server did contain clients’ names, Social Security numbers, driver’s license information and FSC broker account numbers.
“At no time was there ever any access to your actual accounts and holdings with our firm,” financial planner Michael Tomren wrote in the letter. “We have reviewed the daily transaction reports and we have found no irregularities.”
Still, Tomren wrote, the company has upgraded its firewall, changed all passwords, deleted some applications, and hired forensic examiners. The company is also providing all affected clients with two years of free identity protection services from AllClear ID.