What Happened in the Brown Advisory Data Breach?
Brown Advisory, a Maryland-based investment management and strategic advisory firm, discovered a data breach on Jan. 21, 2026. The company found that an unauthorized party had gained access to certain internal systems. As a result, the Brown Advisory data breach has raised concerns for thousands of individuals whose personal information was stored on those systems.
According to the company, the breach did not compromise the security or functioning of its internal systems. In addition, the incident did not affect transactions, trading activity, or client investments. However, the unauthorized access still resulted in exposure of sensitive personal information belonging to affected individuals across the country.
Following discovery, Brown Advisory launched an investigation with help from outside cybersecurity experts. This forensic review aimed to determine the scope of the intrusion and confirm exactly what data the criminal actor accessed. Investigators concluded that the attacker did not reach client investment or trading data, which limited the financial exposure tied to accounts themselves.
Because the breach involved unauthorized access rather than a system outage, the company was able to continue normal operations. Still, the firm moved to notify regulators and affected individuals once the investigation identified the impacted data categories. This process led to formal notifications filed with multiple state authorities in the months following discovery.
Who was affected?
The Brown Advisory data breach has impacted 1,980 individuals nationwide. Regulatory filings break down some of this total by state, including 134 individuals in Massachusetts, 14 in Maine, nine in Indiana, eight in New Hampshire, and two in Washington. This suggests the affected population spans a wide geographic area beyond Brown Advisory’s home state of Maryland.
Given that Brown Advisory operates as an investment management and strategic advisory firm, those affected are likely clients or individuals otherwise connected to the firm’s advisory services. The source material does not specify whether employees were also affected. As a result, it hasn’t been publicly disclosed whether the breach extended beyond the firm’s client base.
Because investment advisory relationships often include detailed personal and financial records, the exposed information could be particularly sensitive. Individuals affected by this breach may include long-term clients whose financial documentation had been retained by the firm for years. Therefore, the risk to affected individuals may extend well beyond a single point in time.
What Information Was Potentially Exposed?
The investigation determined that the unauthorized access led to exposure of several categories of personally identifiable information. This data varies in sensitivity, but several categories carry significant risk if misused. Below is a summary of the information involved in the breach.
- Full names
- Phone numbers
- Email addresses
- Home addresses
- Social Security numbers
- Driver’s license images
- Passport images
- Financial account numbers
This combination of data is especially concerning because it includes government-issued identification documents alongside Social Security numbers. When combined, these details can allow criminals to impersonate victims convincingly. For example, a fraudster with a Social Security number and a scanned driver’s license image could potentially open new credit accounts or file fraudulent tax returns.
In addition, exposed financial account numbers raise the risk of direct financial fraud. Because contact information like phone numbers and email addresses was also exposed, affected individuals may face an increase in targeted phishing attempts. This means victims should stay alert not only to financial fraud but also to social engineering attempts that reference their real personal details to appear legitimate.
What is the company doing?
After discovering the breach, Brown Advisory worked with cybersecurity experts to investigate the scope of the unauthorized access. This response allowed the firm to confirm that client investments and trading data remained untouched. Following this investigation, the company notified the appropriate state attorneys general, including those in Indiana, Maine, New Hampshire, and Washington, as well as the Massachusetts Office of Consumer Affairs and Business Regulation.
To support affected individuals going forward, Brown Advisory is offering 24 months of complimentary identity protection and credit monitoring services through Experian IdentityWorks. This service includes daily credit report monitoring, identity restoration support, and up to $1 million in identity theft insurance. Affected individuals are encouraged to enroll in these services by June 30, 2026, in order to receive the full benefit of this protection.
Beyond offering these monitoring services, the company has also recommended that affected individuals take additional precautions. These include reviewing account statements and credit reports regularly for signs of suspicious activity. The company further recommends placing a security freeze or fraud alert on credit files as an added layer of protection.
What Should Affected Individuals Do?
Enroll in the Offered Identity Protection Services
Affected individuals should strongly consider enrolling in the complimentary Experian IdentityWorks service offered by Brown Advisory. This service provides daily credit monitoring along with identity restoration support if problems arise. Because enrollment must happen by June 30, 2026, it’s important to act before this deadline passes.
In addition to monitoring, the service includes up to $1 million in identity theft insurance. This coverage can help offset costs related to resolving identity theft issues. As a result, enrolling promptly gives affected individuals a stronger safety net while they watch for signs of misuse.
Place a Fraud Alert or Credit Freeze
Because Social Security numbers and financial account numbers were exposed, affected individuals should consider placing a fraud alert or credit freeze on their credit files. A credit freeze restricts access to your credit report, which makes it harder for identity thieves to open new accounts in your name. A fraud alert, on the other hand, requires creditors to verify your identity before extending new credit.
To set up either protection, individuals can contact one of the three major credit bureaus directly. Once one bureau receives a fraud alert request, it must notify the other two. This makes the process relatively quick, though a credit freeze may need to be requested separately with each bureau.
Monitor Financial Accounts and Credit Reports
Affected individuals should regularly review their bank and credit card statements for unfamiliar charges. Because financial account numbers were exposed in this breach, unauthorized transactions are a realistic concern. Catching suspicious activity early can help limit financial damage and simplify the dispute process with your bank.
It’s also wise to request free copies of your credit report from each major bureau. Reviewing these reports allows you to spot unfamiliar accounts or credit inquiries you didn’t authorize. If you notice anything unusual, report it immediately to the credit bureau and your financial institution.
Watch for Phishing and Identity Theft Attempts
Because names, email addresses, and phone numbers were exposed, affected individuals may become targets of phishing scams. Scammers often use real personal details to make fraudulent messages appear legitimate. Therefore, it’s important to treat unexpected calls, texts, or emails requesting personal information with caution.
If you receive a suspicious message referencing this breach, avoid clicking any links or providing further information. Instead, contact the organization directly using a verified phone number or website. Reporting phishing attempts to the Federal Trade Commission can also help authorities track broader scam patterns tied to this incident.
Consider Consulting a Data Breach Attorney
Given the sensitive nature of the exposed data, including Social Security numbers and identification documents, affected individuals may want to consult a data breach attorney. An attorney can help evaluate whether you qualify for compensation related to this incident. This is especially relevant if you experience direct financial harm as a result of the breach.
Many attorneys offer free consultations to review your specific situation. Because deadlines for legal claims can vary, it’s worth exploring your options sooner rather than later. This step ensures you understand your rights and any potential paths toward compensation.
More Information
Official Notice from Brownadvisory
Official Data Breach Notification Letter (PDF)
Official Data Breach Notification Letter (PDF)
Official Data Breach Notification Letter (PDF)
