CyberSecurityBoard
Sponsor Register Login

Fintech company Affirm says Evolve Bank attack exposed customer info

Financial technology company Affirm told regulators this week that a cyberattack on a banking partner exposed customer information.
Affirm - which runs one of the biggest buy now, pay later platforms - told the Securities and Exchange Commission on Monday that information about its own customers leaked during a cyberattack on Evolve Bank.
Last week, the bank confirmed that it suffered a cyberattack exposing the personal information of an undisclosed amount of customers.
Affirm partnered with Evolve Bank to issue its Affirm Card, which operates like a debit card but allows users to convert transactions into installment payments.
The company's SEC filing said it shares the personal information of Affirm Card users with Evolve to facilitate the issuance and servicing of cards.
An investigation into the breach is ongoing but Affirm has been told by Evolve Bank that the incident has been contained.
TechCrunch reported last week that Affirm was one of several Evolve customers, including money transfer company Wise, to confirm they were affected by the attack on the bank.
Affirm also shared a breach notification letter it sent to customers on X and created an FAQ page for customers.
On Monday, Evolve Bank confirmed that it had been attacked by the LockBit ransomware gang in late May. The gang falsely claimed it breached the U.S. Federal Reserve but eventually posted data that came from Evolve Bank.
Evolve Bank said it discovered that some of its systems were not working in May and eventually stopped the attack after several days.
The hackers stole names, Social Security numbers, bank account numbers, and contact information of customers as well as employees.
They plan to begin sending out breach notification letters on July 8 offering two years of free credit monitoring and identity theft protection.
LockBit claims cyberattack on Croatia's largest hospital.
Supreme Court to take up Texas law requiring adults verify age to watch porn.


This Cyber News was published on therecord.media. Publication date: Tue, 02 Jul 2024 17:20:22 +0000


Cyber News related to Fintech company Affirm says Evolve Bank attack exposed customer info

Fintech company Affirm says Evolve Bank attack exposed customer info - Financial technology company Affirm told regulators this week that a cyberattack on a banking partner exposed customer information. Affirm - which runs one of the biggest buy now, pay later platforms - told the Securities and Exchange Commission on ...
4 days ago Therecord.media
Affirm says cardholders impacted by Evolve Bank data breach - Buy now, pay later loan company Affirm is warning that holders of its payment cards had their personal information exposed due to a data breach at its third-party issuer, Evolve Bank & Trust. Evolve is a large financial services provider specializing ...
4 days ago Bleepingcomputer.com
Digital Transformation in the Financial Industry: The Role of Fintech - Fintech companies are providing innovative solutions to help customers save money and manage risk more effectively than ever before; they're also fueling innovation within traditional banks themselves by creating new products based on customer ...
7 months ago Hackread.com
Unleashing the Power of AI - Welcome to the next article in our series on mastering API integration, specifically tailored for the fintech industry. As product managers, understanding and harnessing AI in fintech API management is essential for optimizing operations, enhancing ...
6 months ago Feeds.dzone.com
Evolve Bank Shares Data Breach Details as Fintech Firms Report Being Hit - Fintech companies Wise and Affirm have revealed that the recent data breach suffered by Evolve Bank impacts some of their customers. The notorious ransomware group LockBit recently threatened to leak data allegedly stolen from the US Federal Reserve. ...
4 days ago Securityweek.com
Fintech Frenzy: Affirm & Others Emerge as Victims in Evolve Breach - A ransomware attack against a large financial services provider has become a problem for many companies it works with, two of which have already alluded to potential negative impacts on customer data. The infamous LockBit group earned some undue ...
4 days ago Darkreading.com
CyberCrime & Doing Time: Identification Documents: an Obsolete Fraud Countermeasure - When I'm talking to bankers and other fraud fighters, I often mention how easy it is for a criminal to obtain a Drivers License bearing any information they desire. In the new case, Brianna Mills, a 28-year old bank teller in Loganville, Georgia ...
4 months ago Garwarner.blogspot.com
Vulnerability Summary for the Week of March 4, 2024 - Published 2024-03-06 CVSS Score not yet calculated Source & Patch Info CVE-2023-52584416baaa9-dc9f-4396-8d5f-8c081fb06d67416baaa9-dc9f-4396-8d5f-8c081fb06d67416baaa9-dc9f-4396-8d5f-8c081fb06d67416baaa9-dc9f-4396-8d5f-8c081fb06d67 PrimaryVendor - ...
3 months ago Cisa.gov
Forward Bank Notifies 46,019 Customers of Recent Data Breach - On November 17, 2023, Forward Bank filed a notice of data breach with the Attorney General of Maine after discovering that an unauthorized party was able to access certain files on the company's computer network. In this notice, Forward Bank explains ...
7 months ago Jdsupra.com
Vulnerability Summary for the Week of March 11, 2024 - Published 2024-03-15 CVSS Score not yet calculated Source & Patch Info CVE-2021-47111416baaa9-dc9f-4396-8d5f-8c081fb06d67416baaa9-dc9f-4396-8d5f-8c081fb06d67416baaa9-dc9f-4396-8d5f-8c081fb06d67 PrimaryVendor - Product linux - linux Description In the ...
3 months ago Cisa.gov
Adobe Real-Time CDP: Personalized Customer Experience - Adobe Experience Cloud Products like Adobe Real-Time CDP are available to assist. A revolutionary solution called Adobe Real-Time Customer Data Platform was created to assist companies in realizing the whole value of their customer data. Adobe ...
6 months ago Hackread.com
LockBit Attack Targets Evolve Bank, Not Federal Reserve - Evolve Bank, a financial institution headquartered in Arkansas, was the victim of an attack by the LockBit ransomware group which resulted in a data leak onto the Dark Web this week. LockBit had drawn attention to itself earlier this week after ...
1 week ago Darkreading.com
Encore Bank Notifies Customers of Data Breach After Hackers Access an Employee Email Account - On January 31, 2024, Encore Bank filed a notice of data breach with the Attorney General of Massachusetts after discovering that an unauthorized party was able to gain access to an employee's email account. In this notice, Encore Bank explains that ...
5 months ago Jdsupra.com
Vulnerability Summary for the Week of November 27, 2023 - PrimaryVendor - Product apple - multiple products Description A memory corruption vulnerability was addressed with improved locking. Published 2023-12-01 CVSS Score not yet calculated Source & Patch Info CVE-2023-48842 PrimaryVendor - Product dell - ...
7 months ago Cisa.gov
Nationwide Banking Crisis: Servers Down, UPI Transactions in Jeopardy - Several bank servers have been reported to have been down on Tuesday, affecting Unified Payments Interface transactions throughout the country. Several users took to social media platforms and reported that they encountered issues while making UPI ...
4 months ago Cysecurity.news
Review: Top 5 For Outsourced Customer Service Solutions UK and Abroad - For companies that have too many phone calls and emails to keep up, it is very common to outsource your customer services, either domestically in the UK or abroad to the likes of India or The Philippines. An outsourced customer service firm can ...
1 week ago Itsecurityguru.org
Evolve Bank data breach impacted fintech firms Wise and Affirm - MUST READ. Evolve Bank data breach impacted fintech firms Wise and Affirm. Keytronic confirms data breach after ransomware attack. ABN Amro discloses data breach following an attack on a third-party provider. Christie disclosed a data breach after a ...
4 days ago Securityaffairs.com
CyberCrime & Doing Time: Classic Baggie: Part Three - He claimed he was selected as an independent contractor to rebuild a fleet of airplanes for KLM Royal Dutch Airlines, who had wired him $3.5 Million Euros into his Swiss bank account at Neue Privat Bank. His attorney, Phillip Richardson, said that he ...
5 months ago Garwarner.blogspot.com
The Rise of Digital Customer Experience - Digital customer experience is a hot topic these days. In all seriousness, digital customer experience is one of the most important differentiators for your business. At its core, DCX is about the customer journey-a guided path for your customers to ...
7 months ago Feedpress.me
Evolve Bank confirms data breach after brazen LockBit claims - Arkansas-based Evolve Bank & Trust confirmed on Wednesday that hackers stole customer information and posted it on the dark web. Victims will be contacted with more information on free credit monitoring services, and some impacted customers will be ...
1 week ago Therecord.media
E-commerce Security: Protecting Customer Data - In today's digital landscape, ensuring the security of customer data in e-commerce is a crucial concern for businesses. Protecting e-commerce data security is a complex task that requires a comprehensive understanding of the challenges faced by ...
5 months ago Securityzap.com
Customer Success Stories - Below is a short summary of all the new 2023 financial services customer success stories. Also at Cisco conferences and events we often have customers present but unfortunately most of the time these presentations are not turned into formal customer ...
5 months ago Feedpress.me
Cloud engineer wreaks havoc on bank's network after firing The Register - An ex-First Republic Bank cloud engineer was sentenced to two years in prison for causing more than $220,000 in damage to his former employer's computer network after allegedly using his company-issued laptop to watch pornography. Miklos Daniel ...
6 months ago Go.theregister.com
Cloud engineer wreaks havoc on bank's network after firing The Register - An ex-First Republic Bank cloud engineer was sentenced to two years in prison for causing more than $220,000 in damage to his former employer's computer network after allegedly using his company-issued laptop to watch pornography. Miklos Daniel ...
6 months ago Theregister.com
LockBit claims cyberattack on Croatia's largest hospital - The LockBit ransomware gang has claimed responsibility for a cyberattack on Croatia's largest hospital, which forced it to shut down IT systems for a day. The group claims to have gained access to patient and employee information, medical records, ...
4 days ago Therecord.media

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)