Evolve bank cyberattack exposes customer data

Evolve bank cyberattack exposes customer data and prompts a US federal response. Arkansas-based Evolve Bank and Trust confirmed a cyberattack that led to customer data being leaked on the dark web. The cybercrime group LockBit 3.0 claimed responsibility for the hack, demanding a ransom from the Federal Reserve. The bank has involved law enforcement in the investigation, providing free credit monitoring and identity theft protection to affected customers.

The breach follows a directive from the US Federal Reserve for Evolve to improve its risk management and compliance with anti-money laundering regulations. Additionally fintech company Mercury revealed that some of its customers’ account numbers and deposit balances were compromised, and those affected have been informed and given preventive measures.

Why does it matter?

The cyberattack on Evolve Bank exposed sensitive customer data to potential misuse, including identity theft and financial fraud. It highlights vulnerabilities in financial institutions’ cybersecurity defenses, prompting data protection and regulatory compliance concerns.

In a post on social media platform, X. Mercury said Evolve’s security breach includes some account numbers and deposit balances link to the fintech company and that affected customers have been notify of preventative steps.

Must read also: The US lawsuit against TikTok focuses on children’s privacy.