As we previously noted, Facebook originally announced a breach late last month, in which hackers took advantage of a code vulnerability in the website’s “View As” feature, to access user’s data. However, on October 12, 2018, Facebook stepped back the number of affected accounts from 50 to roughly 30 million, and it acknowledged that hackers were able to view varying levels of information for different accounts.
Continue Reading Facebook Acknowledges Breach of Sensitive Data for Nearly 30 Million Users
Data Breach
Hacker Hits Toyota Industries N.A.
Toyota Industries North America (TINA) has discovered that a hacker was able to access its corporate email system, compromising the personal and protected health information of approximately 19,000 individuals, apparently most of whom were employees.
The data that was potentially compromised included health insurance information, names, addresses, dates of birth, financial information, Social Security numbers,…
Uber Settles Data Breach Case With All 50 State AGs for $148 Million
Yesterday (September 26, 2018), Uber Technologies Inc. agreed to finish inquiries of all 50 states of its 2016 data breach by paying $148 million in different amounts to all 50 states and the District of Columbia.
The settlement concludes the investigations into the data breach, which occurred in 2016 when hackers absconded with the personal…
Years-Long Exposure of Sensitive Client Information Results in $200,000 Settlement with New York Attorney General
In late August, the Attorney General of the State of New York announced a $200,000 settlement with a New York-based non-profit organization that provides services to developmentally disabled individuals and their families after concluding that the organization exposed sensitive personal information of its clients on the Internet for almost three years.
The settlement is the…
Ohio Passes Law Providing Safe Harbor for Businesses Suffering Data Breach
The Ohio legislature recently passed S.B. 220, which gives businesses that suffer a data breach an affirmative defense against tort claims brought in class action suits.
The law goes into effect on November 2, 2018. Basically, the law gives the business a safe harbor if the business implements and complies with “a recognized cybersecurity framework.”…
Yahoo! Data Breach Estimated to Cost Successor Company Net $47 Million
Altaba Inc., the successor company of Yahoo Inc., recently noted in a filing with the Securities and Exchange Commission that after its settlement of consumer and shareholder suits relating to Yahoo’s data breach that affected all 3 million of its users, it will have paid a net $47 million in expenses.
This estimate is based…
Plaintiffs Seek Class Certification in Yahoo Data Breach Class Actions
We previously noted that in late 2016, Yahoo disclosed that it had experienced multiple data breaches relating to what turned out to be roughly three billion of its accounts. At that time, the initial breach, which was reported in September of 2016, had already resulted in several proposed class action complaints. Now, United States District…
Parties Seek to Centralize Saks/Lord & Taylor Data Breach Litigation
As we noted earlier this year, Saks Fifth Avenue LLC, Saks Incorporated, and Lord & Taylor previously disclosed, on April 1, 2018, that some of their customers’ personal information may have been compromised in a data breach. Those companies all share the Canadian business group Hudson’s Bay Company (collectively with Lord & Taylor LLC,…
Millions of Adidas Customers Affected by Data Breach
Adidas has published a customer warning that its U.S. customers could be at risk from a security incident it discovered on June 26, 2018. In the warning, Adidas says that it will reach out to certain customers who purchased goods through its website with more details about the incident. It has been reported that the…
Data Breach Results in $1.4 Million Theft from CHET 529 College-Savings Accounts
On June 27, 2018, the State of Connecticut Treasurer’s Office announced that about $1.4 million had been stolen from Connecticut Higher Education Trust (CHET) college-savings accounts. This theft resulted from data security breaches that occurred in early June, 2018.
Connecticut State Treasurer Denise L. Nappier confirmed that TIAA-CREF Tuition Financing Inc. (TIAA-CREF), the CHET Direct…