Notorious Hacker Targets Bank Allegedly Exposes Personal Data and Steals Sensitive Information from Numerous Financial Institutions
A major US bank has been targeted by a well-known hacker who has stolen sensitive customer information from several financial firms in the process.
Evolve Bank & Trust, based in Tennessee, has reported that the Russian-linked ransomware group LockBit hacked into its system, making off with personal banking customers’ names, Social Security numbers, bank account numbers, and contact information.
Several fintech firms that have partnered with the bank, including Affirm, Wise, Bilt, Marqeta, Mercury, and EarnIn, have either confirmed that some of their customers’ data was compromised in the attack or are currently conducting further investigations.
According to the consumer rights law firm Schubert Jonckheer & Kolbe, millions of customers have been impacted by the data breach.
Affirm, with 18 million customers, believes that the personal information of its Affirm Card users was also compromised in the hack.
Evolve has stated that its system was accessed after an employee clicked on a malicious link in late May.
This news comes at a time when Evolve is facing a cease-and-desist order from the Federal Reserve and the Arkansas State Bank Department. Regulators have cited weaknesses in the bank’s risk management and compliance programs related to anti-money laundering laws.
Evolve Bank & Trust is a commercial bank with $1.551 billion in total assets and 26 locations.