More US finance firms say they were affected by Evolve data breach

Code Skull
(Image credit: Shutterstock)

Yieldstreet and Affirm have become the latest in the growing list of financial organizations to be affected by the recent cyberattack on Evolve Bank and Trust recently.

The online investment platform told TechCrunch that “some Yieldstreet customer may have been impacted” as a result of the incident at the bank. 

“We have communicated this to all potentially affected customers and continue to follow best practices regarding third-party cybersecurity incidents,” a Yieldstreet spokesperson told the publication. So far, the company did not want to say how many people were affected, or what type of data was stolen in the attack.

"Desperate" bid for attention

Evolve Bank & Trust recently confirmed it had seen some of its systems malfunctioning - which subsequent investigation confirmed was the result of “unauthorized activity”, as LockBit hackers tried to deploy ransomware onto the bank’s IT systems.

LockBit gained access to the bank’s IT infrastructure when an employee “inadvertently clicked on a malicious internet link,” and while the gang did steal data from the systems, it couldn’t do more harm since the company quickly deployed backups.

In the aftermath, LockBit leaked the data on the dark web, erroneously claiming that it had hacked the US Federal Reserve bank

But the data seems to belong to Evolve’s numerous banking partners, with Affirm, Branch, EarnIn, Marqeta, Melio, Mercury, and Wise, all now having confirmed having customers that are affected by the incident.

“Out of an abundance of caution, we issued an email notification to account holders about the incident and urged them to exercise vigilance in monitoring account activity and protecting their account credentials. We also reassured them that the safety and security of the Branch platform and mobile application had not been compromised,” a spokesperson told the publication in an email. 

When LockBit leaked the data, claiming it came from the Fed, many analysts said the group was in a “desperate bid for attention” since Operation Cronos disrupted it, heavily. However, looking at all the affected organizations, they might need to reconsider the “desperate” part.

More from TechRadar Pro

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Someone holding a passport with two boarding passes inside it
Top digital loan firm security slip-up puts data of 36 million users at risk
Representational image depecting cybersecurity protection
Top venture capital firm Insight Partners confirms it was hit by cyberattack
Data leak
US utility giant says MOVEit hack exposed stolen data
Ransomware
Top cannabis brand Stiiizy says hackers got access to its systems
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
59 organizations reportedly victim to breaches caused by Cleo software bug
An American flag flying outside the US Capitol building against a blue sky
More alleged Chinese intrusions into the US Treasury revealed
Latest in Security
Data leak
Top home hardware firm data leak could see millions of customers affected
Representational image depecting cybersecurity protection
Third-party security issues could be the biggest threat facing your business
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Android Logo
Devious new Android malware uses a Microsoft tool to avoid being spotted
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Latest in News
Hisense U8 series TV on wall in living room
Hisense announces 2025 mini-LED TV lineup, with screen sizes up to 100 inches – and a surprising smart TV switch
Nintendo Music teaser art
Nintendo Music expands its library with songs from Kirby and the Forgotten Land and Tetris
Opera AI Tabs
Opera's new AI feature brings order to your browser tab chaos
An image of Pro-Ject's Flatten it closed and opened
Pro-Ject’s new vinyl flattener will fix any warped LPs you inadvertently buy on Record Store Day
The iPhone 16 Pro on a grey background
iPhone 17 Pro tipped to get 8K video recording – but I want these 3 video features instead
EA Sports F1 25 promotional image featuring drivers Oscar Piastri, Carlos Sainz and Oliver Bearman.
F1 25 has been officially announced, with this year's entry marking a return for Braking Point and a 'significant overhaul' for My Team mode