Impostor Drains $751,430 from Colgate-Palmolive Employee 401(k)
An impostor obtained a full distribution from a Colgate-Palmolive employee's retirement account after updating contact information with the plan recordkeeper. The case and similar incidents prompted a Government Accountability Office recommendation for new federal guidance on retirement plan data security.
Fox NewsAn impostor called Alight Solutions, the recordkeeper for Colgate-Palmolive's 401(k) plan, and provided the account holder's name, the last four digits of her Social Security number, date of birth, and existing mailing address. Alight updated the contact information and later mailed a temporary password to the new address.
The plan included a 14-day waiting period between an address change and any distribution. The impostor later requested and received the entire $751,430 balance in a single payment sent to a Las Vegas address and bank account. The account holder, Paula Disberry, was living in South Africa at the time.
Disberry sued Alight, Colgate-Palmolive's benefits committee, and BNY Mellon, the plan custodian, to recover the funds.
The lawsuit was settled on undisclosed terms without a court ruling on whether Alight was required to restore the funds. The case began when the impostor contacted Alight's Benefits Information Center and cleared the call center's security check using the information already on file. Alight did not send an alert to Disberry's existing email address or phone number.
A separate lawsuit filed by former Abbott Laboratories employee Heide Bartnett alleged that a hacker used the plan portal's "forgot password" feature to obtain a $245,000 distribution. U.S. Department of Labor to issue new guidance on retirement plan participant data after reviewing eleven lawsuits filed under the Employee Retirement Income Security Act between 2009 and 2024.
5 billion of those losses.
Key Facts
Story Timeline
4 events- 2009-2024
Eleven lawsuits filed under ERISA involving retirement plan data issues.
1 sourceFox News - 2024
Barry Heitin lost $740,000 after following instructions from a caller claiming to be a federal fraud investigator.
1 sourceFox News - February 2026
Government Accountability Office directed the U.S. Department of Labor to issue new guidance on retirement plan participant data.
1 sourceFox News - April 2026
FBI Internet Crime Report stated Americans 60 and older lost $7.7 billion to internet crime in 2025.
1 sourceFox News
Potential Impact
- 01
The U.S. Department of Labor may issue new guidance on retirement plan data security.
- 02
Retirement plan recordkeepers could face additional lawsuits over account security procedures.
- 03
Participants may request stronger identity verification and alert procedures from plan administrators.
Transparency Panel
Related Stories
EuronewsWorld Urban Forum 2026 Draws 57,000 Participants from 176 Countries
The 13th World Urban Forum concluded with discussions on housing, climate resilience and urban governance. Organisers reported that the sessions informed future strategic priorities.
theverge.comTrump Mobile website still lists T1 phone as American-made
The product page for the T1 phone continues to describe the device as American-made. The Verge reported that the site may conflict with FTC advertising rules. The phone was announced in June 2025.
France 24EU Discusses Readiness for Artificial Intelligence Changes
A France 24 program examined whether European Union policies can address the effects of artificial intelligence. The discussion covered potential impacts across daily life and economic sectors.