Robinhood Data Breach
| Company | Robinhood |
|---|---|
| Breach Date | November 3, 2021 |
| Disclosure Date | November 8, 2021 |
| Records Affected | 7 million |
In November 2021, Robinhood disclosed a data breach affecting approximately 7 million customers. A social engineering attack on a customer support employee gave the attacker access to email addresses, full names, and in some cases more extensive personal data.
What Happened
On November 3, 2021, an unauthorized party socially engineered a Robinhood customer support employee by phone, gaining access to customer support systems. The attacker obtained email addresses for approximately 5 million customers and full names for a separate group of approximately 2 million customers. For approximately 310 people, additional personal information including names, dates of birth, and zip codes was exposed. About 10 customers had more extensive account details revealed. After being contained, the attacker attempted to extort Robinhood for payment. Robinhood engaged Mandiant to investigate the incident.
What Data Was Exposed
- Email addresses (approximately 5 million users)
- Full names (approximately 2 million users)
- Dates of birth (approximately 310 users)
- Zip codes (approximately 310 users)
- More extensive account details (approximately 10 users)
Who Is Affected
Approximately 7 million Robinhood customers were affected in total. The majority had only email addresses or names exposed. A small subset of about 310 users had more sensitive personal information compromised. About 10 customers had extensive account details accessed.
How to Check If You Were Affected
Robinhood set up a help page for affected users at robinhood.com/us/en/support. The company sent notifications to affected customers. Check your email and the Robinhood app for any security notifications. Visit HaveIBeenPwned.com to see if your email appears in the Robinhood breach dataset.
What You Should Do Now
- Change your Robinhood account password
- Enable two-factor authentication on your Robinhood account
- Be extremely cautious of phishing emails claiming to be from Robinhood
- Do not click links in emails about your Robinhood account; go directly to the app
- Monitor your investment account for unauthorized trades or withdrawals
- Report suspicious communications to Robinhood support
Last updated: February 10, 2026