What to Do After the Evolve Bank Data Breach

Evolve Bank & Trust, an Arkansas-based banking institution and key partner to numerous fintech companies, suffered a major data breach that affected at least 7.6 million Americans. The attackers had access to Evolve's network for nearly four months before detection, stealing Social Security numbers, bank account details, and other sensitive financial data. If you are an Evolve customer or use a fintech service that partners with Evolve, here is what you need to do.

What Happened in the Evolve Bank Breach?

The breach began on February 9, 2024, when attackers gained unauthorized access to Evolve's internal systems. The intrusion went undetected for nearly four months — Evolve initially attributed system issues discovered in late May 2024 to a hardware failure before determining it was unauthorized activity.

The attack was attributed to the LockBit ransomware group. After Evolve refused to pay the ransom, LockBit published stolen data on its dark web leak site. Evolve later disclosed the breach to state attorneys general, reporting 7,640,112 affected individuals. A class action lawsuit settlement of $11.85 million was reached, with some estimates suggesting the total number of victims could be as high as 18 million when factoring in customers of Evolve's fintech partners.

What Data Was Exposed?

The breach compromised highly sensitive financial information:

• Full names and dates of birth
• Social Security numbers
• Evolve bank account numbers
• Contact information (addresses, phone numbers, emails)
• Financial account details linked to banking services

Steps to Protect Yourself After the Evolve Bank Breach

1. Freeze Your Credit Immediately

With Social Security numbers and financial account details exposed, freezing your credit at Equifax, Experian, and TransUnion is the single most important step you can take. A credit freeze is free and prevents criminals from opening new accounts in your name.

2. Monitor Your Bank Accounts

Review your bank and financial account statements carefully for any unauthorized transactions. Set up real-time alerts for all transactions on your accounts. If you notice anything suspicious, contact your bank immediately to dispute the charges and potentially change your account numbers.

3. Change Your Banking Passwords

Update the passwords for your Evolve Bank account and any fintech services connected to it. Use strong, unique passwords for each account and enable two-factor authentication wherever available.

4. File an IRS Identity Protection PIN

Since Social Security numbers were compromised, there is a risk of tax identity theft. Apply for an Identity Protection PIN (IP PIN) from the IRS to prevent someone from filing a fraudulent tax return using your SSN. You can apply at irs.gov/ippin.

5. Check the Class Action Settlement

Evolve Bank agreed to an $11.85 million settlement. Affected individuals may be eligible for compensation covering documented losses up to a certain amount, as well as free credit monitoring services. Visit the official settlement website to check your eligibility and file a claim before the deadline.

6. Set Up Dark Web Monitoring

The stolen data was published on LockBit's dark web leak site, meaning it is actively circulating among criminals. Use a dark web monitoring service to receive alerts if your SSN, email, or financial details appear on underground marketplaces.

7. Watch for Targeted Scams

Criminals who have your name, SSN, and bank details can craft highly convincing bank impersonation scams. Be wary of:

• Calls claiming to be from Evolve Bank or your fintech provider about "account issues"
• Emails requesting you to verify your identity or update payment details
• Text messages with urgent warnings about your account

Evolve Bank will not ask for your password, PIN, or full SSN through unsolicited contact.

Are Fintech Customers Affected?

Yes. Evolve Bank operates as a banking-as-a-service provider, which means it handles the underlying banking infrastructure for multiple fintech companies. Even if you have never heard of Evolve Bank, your data may have been stored in their systems through a fintech platform you use. Check with your fintech providers to find out if they partner with Evolve and whether your data was included in the breach.

Understanding the LockBit Ransomware Group

LockBit is one of the most active ransomware groups in the world. They infiltrate company networks, encrypt data and exfiltrate copies, then demand payment. When victims refuse to pay, LockBit publishes the stolen data online. In this case, Evolve's refusal to pay the ransom meant that customer data was exposed on the dark web, where it can be downloaded and used by any criminal.

Frequently Asked Questions

How do I know if I was affected?

Evolve Bank was required to notify affected individuals and file reports with state attorneys general. If you received a notification letter from Evolve, your data was compromised. You can also check haveibeenpwned.com to see if your email appeared in the breach.

Can I still file a claim in the class action?

Check the official settlement website for the current claim deadline. If the deadline has passed, you may still be entitled to credit monitoring services or other remedies.

Should I close my Evolve Bank account?

That depends on your comfort level. If you stay, monitor your account closely and ensure all security features are enabled. If you close it, make sure to update any direct deposits or automatic payments linked to the account.

Protect Your Financial Data With PrivacyOn

A banking data breach puts you at risk of identity theft, fraudulent accounts, and financial scams for years after the incident. PrivacyOn provides continuous monitoring across 100+ data broker sites and the dark web, alerting you when your personal or financial information surfaces and removing it before it can be exploited. Combined with credit monitoring and identity protection, PrivacyOn gives you a comprehensive defense against the long-term fallout from breaches like Evolve Bank.