Cresset Capital Management Data Breach Investigation
A California regulatory filing indicates that Cresset Capital Management, LLC reported a hacking/IT incident connected to April 6, 2026. The public listing says certain sensitive personal and financial data may have been involved, but it does not identify how many people were affected. If you received a notice, it is reasonable to take steps now to monitor your credit and financial accounts. You can also fill out the form on this page to contact Strauss Borrelli PLLC and find out whether you may qualify for a claim.
Cresset Capital Management, LLC is an Illinois-based financial services company. Because firms in this sector often maintain personal identifiers and account-related information, a reported cybersecurity incident can create meaningful concerns about identity theft and financial fraud.
Key Facts at a Glance
- Company: Cresset Capital Management, LLC
- Industry: Financial Services
- Location: Illinois
- Incident Type: Hacking/IT incident, according to a California Attorney General filing
- Reported Incident Date: April 6, 2026
- Public Listing Date: May 14, 2026
- Information That May Have Been Involved: Name, Social Security number, contact information, date of birth, driver’s license number, financial account number, and passport number
- Number of People Affected: Not publicly stated in the available filing
- Notice Date: Not publicly available from the materials reviewed
What Happened?
According to the California Attorney General reporting page, the company disclosed a hacking/IT incident. The public entry provides only limited details, and the materials reviewed do not identify when the issue was discovered, how the intrusion occurred, or when individual notices were sent. Because the public record is limited, the known facts should be treated as based on the filing unless more information is released.
What Information Was Exposed?
The regulator listing indicates that the reported incident may have involved several high-risk data elements: name, Social Security number, contact information, date of birth, driver’s license number, financial account number, and passport number. When this mix of information is implicated in a reported security event, the main concerns are identity theft, fraudulent account activity, tax fraud, and misuse of government-issued identification. Even if you have not seen suspicious activity yet, it is wise to monitor closely because these data points can be valuable to criminals.
What Should You Do Next?
- Review any notice carefully. Check what the company says was involved, whether it is offering credit monitoring or identity protection, and what deadlines may apply.
- Monitor financial accounts and credit activity. Watch for unfamiliar transactions, new accounts, password-reset messages, or mailed notices you did not expect.
- Consider a fraud alert or credit freeze. Because Social Security and government ID information may have been involved, a freeze can help reduce the risk of new-credit fraud.
- Get your free credit reports. Review reports from the major credit bureaus and dispute unfamiliar accounts or inquiries as soon as possible.
- Document problems and ask questions early. Save the notice, keep records of any time or money spent dealing with the issue, and if you want to understand possible legal options, fill out the form on this page to contact Strauss Borrelli PLLC.
Your Legal Rights
People affected by a reported data incident may have legal rights under state or federal law, depending on the facts. In some situations, those rights can include receiving timely notice, learning what categories of information were involved, and pursuing claims if an investigation later shows that reasonable safeguards were not used or that the response was inadequate. Whether any claim exists depends on issues such as what happened, what information was implicated, where the affected person lives, and whether misuse or other harm occurred.
Why Hire Strauss Borrelli PLLC?
Strauss Borrelli PLLC has experience representing individuals in data-breach and privacy matters and understands how to investigate reported cyber incidents. Our firm can help review what public filings say, explain the practical risks tied to sensitive personal information, and evaluate whether the known facts may support a legal claim. If you received a notice or are concerned your information may have been involved, contacting our team can help you make an informed decision about next steps.
If you received a breach notification letter from Cresset Capital Management:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
