Lawrence Abrams has a small update to the Evite breach that was first reported in April by ZDNet after a hacker calling themself “GnosticPlayers” put data up for sale on the dark web along with data of other firms:
The data breach monitoring service Haveibeenpwned.com has added a database dump of almost 101 million Evite users who had their information exposed when attackers gained unauthorized access to their servers.
In May 2019, Evite posted a data incident notice that disclosed an unauthorized third-party had gained access to their servers starting on February 22, 2019 and were able to access member’s personal data. No financial information or social security numbers, though, were part of the breach.
“Potentially affected information could include names, usernames, email addresses, passwords, and, if optionally provided to us, dates of birth, phone numbers, and mailing addresses.”
Read more on Bleeping Computer.