Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,322
- Points
- 113
Representatives of Evolve Bank & Trust sent notifications to more than 7.6 million people, warning that their personal information was compromised as a result of the recent ransomware attack by the LockBit group.
An Arkansas-based financial institution confirmed the hack on July 1, 2024, shortly after the attackers began publishing data stolen during the attack. The company noted that it did not pay the ransom to hackers, so they merge the stolen data into the network.
According to Evolve Bank & Trust, hackers stole the personal data of most of the bank's customers, as well as the organization's partners in Open Banking, including: names, social security numbers, bank account numbers and contact information, and so on.
Earlier this week, the financial institution notified the Maine Attorney General's Office that the attack compromised the personal information of 7,640,112 people, and they will now be granted 24 months of free credit monitoring and identity theft protection services.
In notifications to victims, the company explains that the ransomware attack was detected on May 29, but the attackers had access to the Evolve Bank & Trust network since at least February 2024.
"On May 29, 2024, Evolve discovered that some of its systems were not functioning properly. Initially, it seemed that this was a hardware failure, but later we found out that it was unauthorized activity," the company reports.
It is also reported that the bank employees themselves are among the victims, but at present no evidence has been found that customer funds were affected by this incident.
The financial institution emphasizes that since May 31, it does not record any new unauthorized actions in its network.
Recall that the hacking of Evolve Bank & Trust became known at the end of last month. Then the LockBit operators claimed that they hacked the US Federal Reserve System (FRS), which serves as the country's central bank. However, it turned out that in fact only the bank from Arkansas was affected.
As the Vx-Underground researchers joked at the time, someone from LockBit's partners (probably not fluent in English) saw a bank document with the inscription "Federal Reserve United States" and decided that he had compromised the Fed.
• Source: https://www.maine.gov/agviewer/cont...318/a2e61e38-f78d-403d-9abb-3810771bb5d2.html
An Arkansas-based financial institution confirmed the hack on July 1, 2024, shortly after the attackers began publishing data stolen during the attack. The company noted that it did not pay the ransom to hackers, so they merge the stolen data into the network.
According to Evolve Bank & Trust, hackers stole the personal data of most of the bank's customers, as well as the organization's partners in Open Banking, including: names, social security numbers, bank account numbers and contact information, and so on.
Earlier this week, the financial institution notified the Maine Attorney General's Office that the attack compromised the personal information of 7,640,112 people, and they will now be granted 24 months of free credit monitoring and identity theft protection services.
In notifications to victims, the company explains that the ransomware attack was detected on May 29, but the attackers had access to the Evolve Bank & Trust network since at least February 2024.
"On May 29, 2024, Evolve discovered that some of its systems were not functioning properly. Initially, it seemed that this was a hardware failure, but later we found out that it was unauthorized activity," the company reports.
It is also reported that the bank employees themselves are among the victims, but at present no evidence has been found that customer funds were affected by this incident.
The financial institution emphasizes that since May 31, it does not record any new unauthorized actions in its network.
Recall that the hacking of Evolve Bank & Trust became known at the end of last month. Then the LockBit operators claimed that they hacked the US Federal Reserve System (FRS), which serves as the country's central bank. However, it turned out that in fact only the bank from Arkansas was affected.
As the Vx-Underground researchers joked at the time, someone from LockBit's partners (probably not fluent in English) saw a bank document with the inscription "Federal Reserve United States" and decided that he had compromised the Fed.
• Source: https://www.maine.gov/agviewer/cont...318/a2e61e38-f78d-403d-9abb-3810771bb5d2.html
