Subscribe To Our Newsletter

This field is for validation purposes and should be left unchanged.
Class Action U Logo
Check Your Eligibility

Evertec Data Breach

Evertec, a third-party financial transaction processor, experienced unauthorized access to data maintained by an external service provider platform affecting some Popular customers in Puerto Rico. Popular’s systems were not impacted. Evertec notified customers on May 13, 2026, and is offering 24 months of complimentary credit monitoring and identity protection services through Experian IdentityWorks.

Check Your Eligibility
Evertec
Date of Breach: May 13, 2026
CAU logo

Who was affected:

Clients of Evertec

Impacted Data:

Not Specified

Check Your Eligibility

Evertec notified customers on May 13, 2026, and is offering 24 months of complimentary credit monitoring and identity protection services through Experian IdentityWorks. Customers are advised to monitor account activity, use Mi Banco Alerts, enable two-step verification, and place fraud alerts or security freezes with the major credit bureaus. Additional guidance includes reviewing credit reports and reporting suspicious activity to the FTC or financial institutions.

Evertec’s Data Breach Investigation

Evertec, a third-party core provider of financial transaction processing and information technology services, experienced a cybersecurity incident that may have affected personal information associated with customers of financial institutions in Puerto Rico, including Popular customers.

According to Popular’s notice, Popular’s own systems were not affected by the incident. Evertec notified Popular that it learned on May 13, 2026, of unauthorized access to data maintained by an external service provider platform used to support system performance.

In response, Popular stated that it enhanced fraud monitoring measures and is working closely with Evertec to assess the situation and protect customers. Evertec is expected to communicate directly with affected customers by mail where appropriate.

Evertec is also offering 24 months of complimentary credit monitoring and identity protection services through Experian IdentityWorks. Details about the offer and enrollment instructions are included in the letter Evertec sent to affected customers.

Affected individuals should carefully review any notice they receive from Evertec or Popular and follow the recommended protective steps.

When Did This Breach Occur?

According to Popular’s notice, Evertec notified Popular that on May 13, 2026, Evertec learned of unauthorized access to data maintained by an external service provider platform.

The notice does not state when the unauthorized access first began or how long the unauthorized actor may have had access to the data. It also does not identify the external service provider platform by name.

Popular stated that it enhanced fraud monitoring measures after learning of the incident and is continuing to assess the situation with Evertec. The notice also says Evertec will communicate directly with affected customers by mail as appropriate.

Customers who receive a letter should review it carefully because the letter identifies the information that was exposed and includes instructions for enrolling in the complimentary credit and identity monitoring services.

The notice also states that eligible customers must complete enrollment within 90 days if they choose to take advantage of the Experian services.

What Information Was Breached?

Popular’s notice states that the Evertec cybersecurity incident affected certain personal information associated with some customers of financial institutions in Puerto Rico, including Popular customers.

The public notice does not list every specific data element exposed for each person. Instead, it states that the letters Evertec sent to affected customers identify the information that was exposed.

The notice also explains that the incident affected debit cards and did not involve credit cards. Popular advised customers that they can continue using their current debit cards, while also encouraging them to monitor accounts closely and report suspicious activity.

Because the incident involved information connected to financial transaction processing, affected individuals should take the notice seriously. Exposed information may create risks of fraud, phishing, account misuse, or attempted identity theft, depending on what was included in each individual’s notice letter.

Customers who received multiple letters from different financial institutions may have had more than one debit card involved. Popular stated that letters were sent based on each debit card that was involved.

What You Can Do

If you received a notice from Evertec or Popular, review it carefully to determine what information was exposed and how to enroll in the offered protection services. Evertec is offering 24 months of complimentary credit monitoring and identity protection services through Experian IdentityWorks.

Popular recommends that customers activate Mi Banco Alerts to receive transaction notifications and use the On/Off feature in the Mi Banco mobile app to temporarily lock and unlock debit cards. Customers should also monitor account statements, review credit reports, and report suspicious activity immediately.

Popular also encourages customers to change passwords regularly, use strong and complex passwords, enable two-step verification where possible, and never share passwords or PINs.

Customers with a U.S. Social Security number may also consider placing a fraud alert or credit freeze with the major credit bureaus. If you notice suspicious activity on a Popular account, Popular advises contacting TeleBanco Popular or visiting a branch.

Keep copies of any notices, enrollment confirmations, and records of time or money spent responding to the incident.

File a Data Breach Lawsuit Against Evertec

If you received notice that your personal information was involved in the Evertec cybersecurity incident, you may have legal rights. Companies that process financial transactions and handle sensitive customer information are expected to use reasonable safeguards to protect that data from unauthorized access.

The Evertec incident involved unauthorized access to data maintained by an external service provider platform. According to Popular’s notice, the incident affected certain personal information associated with some customers of financial institutions in Puerto Rico, including Popular customers. Popular stated that its own systems were not affected.

Depending on what information was exposed, affected individuals may face risks of fraud, phishing, identity theft, or debit card-related account misuse. Data breach victims may be able to seek compensation for losses such as unauthorized charges, identity theft expenses, credit monitoring costs, time spent responding to the breach, and other damages.

Class Action U is investigating the Evertec cybersecurity incident and helping affected individuals understand their rights. If you received a data breach notice from Evertec or a financial institution related to this incident, contact Class Action U today to learn whether you may qualify to take legal action.

VIEW PDF
Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This field is for validation purposes and should be left unchanged.
Other Data Breaches
Open Arms Care Corporation Data Breach
Date of Breach: June to August 2025
Orrstown Bank Data Breach
Date of Breach: September 17, 2025
C2 Financial Data Breach
Date of Breach: April 25, 2026
Show More

Frequently Asked Questions

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.