Breach, Data Security, Network Security

Data dump suggests that Evite data breach affected 100M accounts

A new addition to the data breach reference website "Have I Been Pwned?" seemingly reveals that more than 100 million accounts were compromised in this year's data breach of the event-planning service Evite.

"Have I Been Pwned?" founder Troy Hunt added a database of 100,985,047 affected accounts to his site on July 14, and in doing so offered new insights into the scope of the breach, which Evite disclosed last April. On his site, Hunt says the data was provided to him by a source who asked credit be given to [email protected].

A July 15 report by BleepingComputer states that it was originally believed that only around 10 million users were impacted by the breach. This estimate was derived from an Evite database that was observed being sold on a dark web marketplace.

In its April breach disclosure, Evite said the incident began started on February 22, 2019 when an unauthorized party acquired an inactive data storage file containing dated user information from 2013 and years prior. Names, usernames, email addresses, passwords, dates of birth, phone numbers, and mailing addresses were potentially affected in the incident.

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.