Was Evolve Bank & Trust hacked?

Yes. The Evolve Bank breach occurred on February 9, 2024, affecting 7.6 million records.

What data was exposed in the Evolve Bank & Trust breach?

Evolve Bank's 2024 ransomware breach exposed data of 7.6 million people including fintech partners' customers. Learn what happened.

What should I do if I was affected by the Evolve Bank & Trust data breach?

Check if your data was exposed using our free tool, change your passwords, enable two-factor authentication, and monitor your accounts for suspicious activity.

Evolve Bank Data Breach

Critical Severity 7.6 million records affected Published February 10, 2026

Company	Evolve Bank & Trust
Breach Date	February 9, 2024
Disclosure Date	June 26, 2024
Records Affected	7.6 million

In June 2024, Evolve Bank & Trust disclosed a data breach caused by a LockBit ransomware attack that exposed personal data of 7.6 million individuals. The breach had wide ripple effects because Evolve provides banking infrastructure for numerous fintech companies.

What Happened

The LockBit ransomware group gained access to Evolve Bank's systems after an employee clicked on a malicious link in February 2024. The attackers downloaded customer data and deployed ransomware. When Evolve refused to pay the ransom, LockBit published the stolen data on its leak site in late June 2024. The breach was particularly impactful because Evolve provides banking-as-a-service infrastructure for fintech companies including Wise, Mercury, Affirm, and others. The stolen data included information from both Evolve's direct customers and users of its fintech partners.

What Data Was Exposed

Social Security numbers
Bank account numbers
Contact information (names, addresses, phone numbers, emails)
Dates of birth
Account balances and transaction details
Personal data shared by fintech partners

Who Is Affected

Approximately 7.6 million individuals were affected, including Evolve Bank direct customers and users of fintech companies that partner with Evolve such as Wise, Mercury, Affirm, Bilt, Marqeta, and others. Even if you never heard of Evolve Bank, your data may have been exposed through a fintech service you use.

How to Check If You Were Affected

Evolve Bank sent notification letters to affected individuals. Check if your fintech provider (Wise, Mercury, Affirm, etc.) issued any notices about the Evolve breach. Visit HaveIBeenPwned.com to check if your email appears in the breach data. Contact Evolve Bank's dedicated breach response line for more information.

What You Should Do Now

Place a credit freeze with all three credit bureaus
Enroll in the free identity monitoring offered by Evolve Bank
Monitor your bank accounts for unauthorized activity
Check with any fintech services you use to see if they partner with Evolve
File an IRS Identity Protection PIN request to prevent tax fraud
Be alert for phishing attempts referencing your financial accounts

Last updated: February 10, 2026