Security News > 2024 > July > Affirm says cardholders impacted by Evolve Bank data breach
![Affirm says cardholders impacted by Evolve Bank data breach](/static/build/img/news/affirm-says-cardholders-impacted-by-evolve-bank-data-breach-medium.jpg)
Buy now, pay later loan company Affirm is warning that holders of its payment cards had their personal information exposed due to a data breach at its third-party issuer, Evolve Bank & Trust.
After researchers analyzed the data, it was determined that it had been stolen from Evolve Bank & Trust, which confirmed to BleepingComputer that the data belonged to them.
Affirm, one of Evolve's clients, is now warning its customers that their personal and financial information might have been exposed in the Evolve data breach.
Affirm shares customer data with Evolve as required to issue Affirm Cards, a debit card that lets you pay for purchases over time.
"On June 25, 2024, Evolve Bank & Trust, the third-party issuer of the Affirm Card, notified Affirm that Evolve had experienced a cybersecurity incident whereby a third party gained unauthorized access to personal information and financial information of Evolve retail banking customers and the customers of its financial technology partners," reads the 8-K filing.
"Because the Company shares the Personal Information of Affirm Card users with Evolve to facilitate the issuance and servicing of Affirm Cards, the Company believes that the Personal Information of Affirm Card users was compromised as part of Evolve's cybersecurity incident."
News URL
Related news
- Evolve Bank says data breach impacts 7.6 million Americans (source)
- Collection agency FBCS ups data breach tally to 3.2 million people (source)
- Frontier warns 750,000 of a data breach after extortion threats (source)
- Frontier warns 750,000 of a data breach after extortion threats (source)
- Christie's starts notifying clients of RansomHub data breach (source)
- 23andMe data breach under investigation in UK and Canada (source)
- Cylance confirms data breach linked to 'third-party' platform (source)
- Pure Storage confirms data breach after Snowflake account hack (source)
- Cylance clarifies data breach details, except where the data came from (source)
- Life360 says hacker tried to extort them after Tile data breach (source)