Finance & Banking , Fraud Management & Cybercrime , Incident & Breach Response

Evolve Discloses That Hackers Stole Data of 7.6M Individuals

Stolen Data Includes Names, Social Security and Bank Account Numbers, Contact Info
Evolve Discloses That Hackers Stole Data of 7.6M Individuals
LockBit hackers stole the information of 7.6 million individuals from Evolve Bank & Trust.

Evolve Bank & Trust disclosed that hackers stole the data of more than 7.6 million individuals in an incident detected in May.

The Arkansas firm has been in incident disclosure mode for weeks now, following Evolve's listing on the leak site of the Russian-speaking ransomware-as-a-service operation LockBit in late June.

See Also: Corelight's Brian Dye on NDR's Role in Defeating Ransomware

In an official disclosure, Evolve said it detected hackers on May 29 and at first attributed signs of a malicious breach to "a hardware failure." An investigation showed hackers penetrated the bank's systems as early as February.

"No new unauthorized activity on Evolve's systems has been identified since May 31, 2024," the company said.

The tally of affected individuals, which include Evolve clients as well as customers of its banking platform, is 7,640,112.

Evolve Bancorp operates both a traditional bank and open banking services, which it provides to a number of fintech companies via what's often referred to as banking as a service.

In a copy of the data breach notification letter it filed, Evolve didn't disclose the types of data that hackers stole, but the company has already acknowledged that hackers stole names, Social Security numbers, bank account numbers and contact information.

The incident has had a cascading effect on the financial industry as Evolve customers are notifying their customers that hackers stole their data. Among the affected current and past clients of Evolve are "buy now, pay later" creditor Affirm and money transfer service Wise (see: Evolve Ransomware Hack Affects Affirm and Fintech Companies).

June was a challenging month for the company. Just days before LockBit disclosed the attack, the Federal Reserve Board ordered the bank to improve its anti-money laundering and risk management programs, "including through enhanced procedures related to recordkeeping and consumer compliance programs."

LockBit initially claimed to have hacked the Federal Reserve rather than Evolve, likely because the hacker spotted a stolen document that said "United States Federal Reserve" and assumed the victim was the central bank (see: Bogus: LockBit's Claimed Federal Reserve Ransomware Hit).


About the Author

David Perera

David Perera

Editorial Director, News, ISMG

Perera is editorial director for news at Information Security Media Group. He previously covered privacy and data security for outlets including MLex and Politico.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.co.uk, you agree to our use of cookies.