Class Action U Logo
Check Your Eligibility

Evolve Mortgage Services Data Breach

The Evolve Mortgage Services data breach exposed personal and financial information of certain individuals. Affected individuals are encouraged to enroll in credit monitoring and take other protective steps. Don’t wait—take action today to protect your rights and explore your legal options

Evolve Mortgage Services
Date of Breach: September 17, 2025, to September 24, 2025
CAU logo

Who was affected:

Clients of Evolve Mortgage Services

Impacted Data:

Full name

Social Security number

Driver’s license number or government-issued ID number

Financial account information

Check Your Eligibility

Evolve Mortgage Services recently reported a data breach affecting sensitive personal information of individuals associated with their loan services. The breach occurred in late 2025 and may have compromised personal data. Learn more about the breach, what information was affected, and how you can protect yourself.

Evolve Mortgage Services’ Data Breach Investigation

Evolve Mortgage Services, LLC (Evolve), a provider of loan services to financial institutions, recently reported a data breach that may have exposed sensitive personal information. The breach was discovered on September 24, 2025, after unusual activity was detected on Evolve’s network. Evolve immediately engaged third-party cybersecurity specialists to investigate and contain the breach.

The investigation revealed that unauthorized access occurred between September 17, 2025, and September 24, 2025, impacting certain files and data related to Evolve’s services. The breach was traced back to a ransomware group that claimed responsibility for the incident, reportedly leaking over 20 TB of data on the dark web in October 2025.

Evolve completed a detailed review of the compromised data and identified which individuals were affected. On February 3, 2026, Evolve began notifying impacted individuals about the breach. The company has also taken several measures to improve its cybersecurity infrastructure, including replacing hardware and implementing additional security protocols.

While Evolve has stated that there is currently no evidence that the exposed information has been misused for fraud or identity theft, they are providing affected individuals with credit monitoring services as a precautionary measure.

When Did This Breach Occur?

The breach was identified on September 24, 2025, and the unauthorized access took place between September 17, 2025, and September 24, 2025. Evolve completed its investigation and the identification of affected individuals by November 24, 2025.

What Information Was Breached?

The data accessed during the breach potentially included the following personal information:

  • Full name

  • Social Security number

  • Driver’s license number or government-issued ID number

  • Financial account information

Evolve has emphasized that full medical records and detailed clinical information were not involved in this breach.

What You Can Do

If you received a notification from Evolve Mortgage Services or believe your data was impacted by this breach, here are the steps you should take to protect yourself:

  1. Enroll in credit monitoring services: Evolve is offering free 12 months of credit monitoring and identity protection services via Cyberscout (a TransUnion company). Make sure to sign up within 90 days of receiving the notification.

  2. Monitor your financial accounts: Review your bank and credit card statements for any suspicious transactions.

  3. Review your credit reports: Obtain your free annual credit report from the three major credit reporting bureaus: TransUnion, Equifax, and Experian. Visit AnnualCreditReport.com to access your reports.

  4. Place fraud alerts or credit freezes: You can place a fraud alert or a credit freeze on your credit file. These actions will prevent unauthorized access to your credit file and help prevent fraudulent activity.

  5. Report suspicious activity: If you discover any unauthorized transactions or accounts in your name, contact the financial institution or credit card company immediately.

By staying vigilant and taking these steps, you can protect yourself from potential identity theft or fraud.

File a Data Breach Lawsuit Against Evolve Mortgage Services

If you were notified by Evolve Mortgage Services or believe your personal information was exposed, you may be eligible to file a class action lawsuit. Compensation could cover the costs of credit monitoring services, potential identity theft, and time spent mitigating the breach’s effects.

Class action lawsuits are an effective way to hold companies accountable for failing to protect sensitive information. If you’ve been impacted, it’s important to take action now.

Contact us at Class Action U, where we’ll connect you with a lawyer skilled in data breach lawsuits. Fill out our quick, easy, and secure form to sign up for a free consultation to see if you have a case. There is no cost to reach out to our legal partner, and you are under no obligation after speaking with someone from our team.

VIEW PDF
Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This field is for validation purposes and should be left unchanged.
Other Data Breaches
Precipio Data Breach
Date of Breach: November 23, 2025
Partner in Publishing Data Breach
Date of Breach: August 4, 2025, to August 14, 2025
Tuggle Duggins Data Breach
Date of Breach: October 1, 2024
Show More

Frequently Asked Questions

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.