Evite

Evite, a social planning and e-invitations service admitted that they have experienced a data breach.

At the time, a hacker named Gnosticplayers put up for sale the customer data of six companies, including Evite.

The compromised information includes names, usernames, email addresses, passwords, and, if optionally provided to us, dates of birth, phone numbers, and mailing addresses.

The hacker claimed to be selling ten million Evite user records that included full names, email addresses, IP addresses, and cleartext passwords.

Evite said the malicious intruder stole an inactive data storage file that was holding information on some Evite user accounts.

Source: https://www.zdnet.com/article/evite-e-invite-website-admits-security-breach/

TPRM report: https://scoringcyber.rankiteo.com/company/evite

"id": "evi15726323",
"linkid": "evite",
"type": "Breach",
"date": "06/2019",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Ten million user records',
                        'industry': 'Social Planning and E-invitations',
                        'name': 'Evite',
                        'type': 'Company'}],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 'Ten million',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'usernames',
                                              'email addresses',
                                              'passwords',
                                              'dates of birth',
                                              'phone numbers',
                                              'mailing addresses',
                                              'IP addresses']},
 'description': 'Evite, a social planning and e-invitations service, '
                'experienced a data breach where a hacker named Gnosticplayers '
                'put up for sale the customer data of six companies, including '
                'Evite. The compromised information includes names, usernames, '
                'email addresses, passwords, and, if optionally provided, '
                'dates of birth, phone numbers, and mailing addresses. The '
                'hacker claimed to be selling ten million Evite user records '
                'that included full names, email addresses, IP addresses, and '
                'cleartext passwords. Evite stated that the malicious intruder '
                'stole an inactive data storage file that was holding '
                'information on some Evite user accounts.',
 'impact': {'data_compromised': ['names',
                                 'usernames',
                                 'email addresses',
                                 'passwords',
                                 'dates of birth',
                                 'phone numbers',
                                 'mailing addresses',
                                 'IP addresses']},
 'initial_access_broker': {'data_sold_on_dark_web': True},
 'motivation': 'Financial Gain',
 'threat_actor': 'Gnosticplayers',
 'title': 'Evite Data Breach',
 'type': 'Data Breach'}

Evite

Rev-A-Shelf

DMC Consolidated, Inc.

Mid-America Apartment Communities