July 9, 2024 at 09:33AM
Evolve Bank & Trust notified 7.6 million individuals of a recent LockBit ransomware attack compromising personal information, including names, Social Security numbers, and bank account information. The company confirmed the incident, stating no ransom was paid, and offered free credit monitoring and identity protection services. There’s no evidence of customer funds being accessed.
Key Takeaways from Meeting Notes:
1. Evolve Bank & Trust confirmed a recent LockBit ransomware attack in which the personal information of over 7.6 million individuals was compromised.
2. The compromised personal information includes names, Social Security numbers, bank account numbers, and contact information for personal banking customers and Open Banking partners.
3. Evolve Bank will provide 24 months of free credit monitoring and identity protection services to the affected individuals.
4. The ransomware attack occurred on May 29, with attackers having access to the network since at least February.
5. Although the attackers exfiltrated substantial personal information, Evolve Bank found no evidence of customer funds being accessed during the attack and identified no new unauthorized network activity after May 31.
6. The LockBit ransomware gang, which was disrupted by law enforcement in February 2024, managed to recover and became the most active ransomware gang in May.
Please let me know if you need any further assistance or information.