Cyber Incident Victim: Wilshire Advisors, LLC
Date:
Mar 2022
Location:
United States of America
Summary
Wilshire Advisors disclosed a cyberattack involving unauthorized access to its systems, potentially compromising client information. The firm secured affected systems, notified potentially impacted parties, and engaged cybersecurity experts alongside law enforcement to investigate the incident. While client services remained operational without disruption, the company offered complimentary credit monitoring services as a precautionary measure to address potential risks stemming from the data exposure. The response emphasized containment, remediation, and transparency with stakeholders throughout the investigation process.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 0 techniques |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
Wilshire Advisors, LLC, a prominent financial services firm, disclosed on March 4, 2022, that it had been targeted in a cyberattack. The company detected unauthorized access to certain portions of its internal systems, prompting immediate activation of its incident response protocols. Wilshire took affected systems offline as a containment measure to prevent further unauthorized activity. The firm engaged third-party cybersecurity forensic experts to investigate the nature and scope of the breach while coordinating with law enforcement agencies. Internal IT teams worked to isolate compromised network segments and assess potential data exposure across client accounts and proprietary systems. Business operations experienced temporary disruptions during the containment phase, though core investment advisory functions remained operational through contingency protocols.
The investigation confirmed that attackers exfiltrated limited categories of data, though Wilshire did not publicly specify whether client financial records or personally identifiable information were compromised. The company initiated notifications to potentially affected clients and regulatory bodies in compliance with statutory obligations. Service restoration proceeded systematically after implementing enhanced security controls across network infrastructure. Wilshire’s public disclosure emphasized no evidence of broader market impact beyond its internal systems but acknowledged ongoing remediation efforts to address vulnerabilities exploited in the attack. The incident prompted a comprehensive review of access management policies and threat detection capabilities, with the firm committing to additional security investments. No ransomware payments or explicit attacker motives were disclosed in the company’s statements regarding the event.