\n<\/p>\n
The money transfer and fintech company Wise announced on Friday that some of its customers\u2019 personal data may have been stolen in the recent data breach at Evolve Bank and Trust<\/a>.\u00a0<\/p>\n The news highlights that the fallout from the Evolve data breach on third-party companies \u2014 and their customers and users \u2014\u00a0 is still unclear, and it\u2019s likely that it includes companies and startups that are yet unknown.\u00a0<\/p>\n In a statement published on its official website<\/a>, Wise wrote that the company worked with Evolve from 2020 until 2023 \u201cto provide USD account details.\u201d And given that Evolve was breached recently, \u201csome Wise customers\u2019 personal information may have been involved.\u201d<\/p>\n \u201cWe\u2019ll be emailing all Wise customers who we think may have been affected by this data breach directly,\u201d the company wrote.<\/p>\n Wise said that it shared U.S. customers\u2019 personal data with Evolve, information that included names, addresses, date of birth, contact details and Social Security numbers or Employer Identification Number. For non-U.S. customers, Wise also shared \u201canother identity document number.\u201d\u00a0<\/p>\n At this point, it\u2019s unclear how many Wise customers have been affected, as the company wrote that it is still \u201cactively investigating.\u201d\u00a0<\/p>\n \t\tDo you have more information about the Evolve breach, and how it\u2019s affecting other companies? From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram, Keybase and Wire @lorenzofb, or email<\/a>.<\/a> You also can contact TechCrunch via SecureDrop<\/a>.\t<\/div>\n Wise did not respond to a request for comment asking to clarify how many of its customers had their data stolen.<\/p>\n When reached by TechCrunch for comment, asking whether Evolve knows how many partner companies \u2014 old and current \u2014 and end users have been affected by the breach, and whether Evolve has already contacted all of them, Evolve spokesperson Eric Helvie declined to comment and referred to the company\u2019s official statement on its website<\/a>.<\/p>\n As of this writing, the statement says Evolve \u201ccontinues to work around the clock to respond to the recent cybersecurity incident\u201d and promises to provide further updates. The company said the breach was a ransomware attack by the LockBit cybercrime gang, due to an employee clicking on a malicious link in May of this year.\u00a0<\/p>\n \u201cThere is no evidence that the criminals accessed any customer funds, but it appears they did access and download customer information from our databases and a file share during periods in February and May,\u201d the statement read. \u201cThe threat actor also encrypted some data within our environment. However, we have backups available and experienced limited data loss and impact on our operations.\u201d<\/p>\n The company also promises to directly notify \u201ceach individual whose personal information was affected.\u201d<\/p>\n So far, Affirm, EarnIn, Marqeta, Melio and Mercury \u2014 all Evolve partners \u2014 have acknowledged<\/a> that they are investigating how the Evolve breach impacted their customers.\u00a0On Monday, fintech reporter Jason Mikula shared on X<\/a> a notification that Branch, another Evolve partner, had sent to a customer. Branch has yet to respond to repeated requests for comment from TechCrunch.<\/p>\n<\/div>\nContact Us<\/h4>\n