SoFi Hong Kong says a third-party vendor database was accessed without authorization, potentially exposing customer information, and the investigation is still ongoing. The company is urging customers to watch for phishing, strengthen account security, and monitor financial activity while it assesses the scope of the incident. #SoFiHongKong #SoFiSecuritiesHongKongLimited
Keypoints
- SoFi Hong Kong detected unauthorized access to a vendor-managed database on April 30, 2026.
- The compromised database belonged to SoFi Securities (Hong Kong) Limited.
- The company has engaged a third-party cybersecurity firm to assist with response efforts.
- SoFi says it does not yet know which customer data may have been exposed.
- Customers are being advised to update passwords, enable two-factor authentication, and watch for suspicious activity.