A newly added database dump of approximately 101 million Evite users has been added to the data breach monitoring service, haveibeenpwned[.]com. The Evite breach was originally disclosed in May 2019 and claimed to only have exposed data of about 10 million users. The compromised information includes names, email addresses, dates of birth, phone numbers, physical addresses, and passwords stored in clear text. Some of the victims’ data had been observed for sale on Dream Market, an underground online marketplace, which has since been shut down. Users are advised to change passwords for the Evite website immediately, as well as any other sites using the same password, and enable multi-factor authentication where available.

Data BreachNJCCIC