Evite has notified customers of a data breach that stemmed from an inactive data storage file associated with user accounts. The company said that the breach had compromised customers personal information including names, usernames, email addresses, passwords, dates of birth, phone numbers, and mailing addresses. Social security numbers and payment information were not impacted as the former is not collected and the latter is not stored on the site. The breach notification comes months after ZDNet first reported in April that a hacker dumped Evite customer data on illicit online markets.
Source: https://threatpost.com/data-breach-disclosed-by-online-invitation-firm-evite/145635/