Sophisticated Cyber Criminals Allegedly Hit Mercer Advisors and Beacon Pointe Advisors with Extortion Demand

Sophisticated Cyber Criminals Hit Mercer Advisors and Beacon Pointe Advisors with Extortion Demand featured image

ShinyHunters alleged breach of Mercer Advisors and Beacon Pointe Advisors. Screenshot by Cybernews

According to reporting by Cybernews, two of the most recognized names in wealth management — Mercer Advisors and Beacon Pointe Advisors — were reportedly given a 48-hour ultimatum by the extortion group ShinyHunters. 

The message: “Make the right decision, don’t be the next headline.” 

At the time of writing, neither firm has publicly confirmed the incident. The attackers claim to have stolen millions of records, including personally identifiable information and internal corporate data. Whether verified or not, the situation highlights a larger reality: Cyber extortion has become a reputational weapon.

Learn more about this attack here

Why RIAs Are Prime Targets

Registered investment advisors manage: 

  • Portfolio and custodial data 
  • Tax documentation 
  • High Net Worth Investor Identity records 
  • Wire instructions 
  • Sensitive client communications 


For firms managing hundreds of millions and especially billions of dollars in assets, trust is the business model.  A cyber event like this one can do untold damage to reputation and result in millions of losses.  

What Firms Should Be Asking

Even if your firm is not involved, this is a warning shot. 

  • Have you confirmed your firm is compliant to amended Reg S-P?  
  • Have you tested your Incident Response Plan? 
  • Do you know where all sensitive client data resides? 
  • Are you certain your data is appropriately protected? 
  • Do you have appropriate cybersecurity insurance? 
  • Are you ready for the inevitable SEC audit of your cyber compliance program? 

Final Thoughts

Whether it’s this particular threat actors (Shinyhunter) or another group out there who is equally as sophisticated, the publicity dollar values associated with this attack are going to motivate them to further target the Asset and Wealth Management industry.  

At BW Cyber, we work exclusively with investment advisors, family offices, and alternative investment firms to reduce real-world cyber exposure — from wire fraud controls to executive incident readiness and insurance alignment. 

Contact BW Cyber to evaluate your operational and cyber risk posture before a headline forces the discussion. 

BW Cyber, LLC