The Data Breach Brief: Week of April 1st, 2026

The following data breaches have been announced this week—make sure you’re in the know.

If you received a data breach notice regarding any of the breaches listed below, act now and take Morgan & Morgan’s data breach quiz to see if you may be eligible for compensation.

Hightower Holding

Hightower Holding, the parent company of financial management services provider Hightower Advisors, recently reported that it suffered a cyberattack between January 8 and 9, 2026, when hackers exfiltrated certain files from its servers. The stolen files were confirmed to contain sensitive, personal information such as:

• Names
• Social Security numbers
• Driver’s license numbers

Aura

Aura recently suffered a data breach  in March 2026, when hacking group ShinyHunters used a phone phishing attack targeting one of its employees. The attackers gained access to the employee’s account for approximately an hour, enabling further access to roughly 900,000 records of approximately 20,000 current and 15,000 former customers. The compromised information includes: 

• Names
• Email addresses
• Addresses
• Phone numbers 

Sierra Management Group, Inc.

Sierra Management Group, Inc., suffered a data breach in March 2026, when ransomware group Genesis gained access to its servers. The group claimed to have stolen 100 GB of data and threatened to release the information publicly if its ransom demands were not met within 5 to 6 days of the claim.

According to Genesis, the types of data stolen include: 

• Personally identifiable information (PII)
• Insurance data
• Healthcare data
• Financial data
• User folders and contents from the company’s file server

If you or a loved one were affected by any of these data breaches, you may be entitled to compensation. Find out more in minutes with our online data breach quiz.