Articles Tagged with Data breach

Chicago-based Stoltmann Law Offices is representing clients who’ve been the victims of cybersecurity hacks. Third Parties who store and use your personal data have an obligation to keep that information secure. But in the online universe, cyberthieves are working 24/7 to steal this valuable commodity. Stolen data is bought and sold on the internet’s black market and used by other scamsters to open credit accounts with stolen identities.

Aon Corporation, the massive global insurance company, was recently hit with a class-action lawsuit over a cyber-hacking incident, or “data breach,” that allegedly lasted more than a year.  “The 25-page lawsuit comes after Aon revealed that it had been hit by a data breach that went undetected for over a year, from late December 2020 to February 2022, according to class-action.org. Per the complaint, cybercriminals breached the company’s systems to access insurance files containing consumers’ names, addresses, dates of birth, Social Security and driver’s license numbers and, in some cases, benefit enrollment information.”

The lawsuit also claims that Aon “lacked the security necessary to prevent such a hack” or stop unauthorized parties from stealing consumers’ personally identifiable information. Per the suit, Aon has disregarded consumers’ privacy rights and exposed their information to a heightened risk of misuse.” According to the complaint, Aon’s data breach notice “deliberately underplayed the severity of the breach and misrepresented that the insurer had no evidence cybercriminals had copied, retained, or shared the data, even though Aon knew cybercriminals had accessed its files for an extended period.” The suit states “Aon has offered data breach victims only 24 months of free credit monitoring services “despite the significant [personally identifiable information] that was compromised over a two-year period.”

Chicago based Stoltmann Law Offices represents victims of identity and data-breaches nationwide in class representation or FINRA arbitration to recover damages caused from data breaches by brokerage firms, investment companies, and other institutions which are obligated to keep your private information safe.  We are currently investigating claims made by the Maine Attorney General’s office which was reported this week against Cetera Financial Group.  According to the the report, the Social Security numbers of 2,188 Cetera clients were potentially exposed when a printer company used by Cetera, R.R. Donnelly, was reportedly hacked.

The cybersecurity of proprietary information for brokerage firm clients is a huge issue for regulators. As the world continues to be run through electronic means using the internet and electronic storage networks, the security of those systems is of paramount importance.  Hackers gain access to this information and then sell it en masse on the dark web to criminals who will use the credentials they obtain to hack into the personal financial accounts and cellular phone accounts of unsuspecting victims sometimes to ruinous ends.  If you have been notified by Cetera that your information was potentially exposed or compromised, you have legal claims that can be pursued against both Cetera and R.R. Donnelly.  These companies have strict compliance obligations to ensure these hacks do not happen. In some instances, these hacks are the result of poor security controls and could be preventable.

In January 2021, it was reported that thousands of Voya Financial Advisors’ clients’ personal identifiable information was exposed as the result of a Russian hack. As a result of that hack, Voya Financial Advisors paid a $1 million fine to the Securities and Exchange Commission The SEC Order and fine was based on the allegations that Voya Financial lacked sufficient written policies and procedures to ensure compliance with Rule 30 of Regulation S-P, 17 C.F.R. § 248.30(a), known as the “Safeguard Rule”. The SEC also alleged that Voya Financial failed to develop and implement a written Identity Theft Prevention Program, in violation of Rule 201of Regulation S-ID, 17 C.F.R. § 248.201, which is known as the Identity Theft Red Flags Rule.

Stoltmann Law Offices, P.C. is evaluating cases for Robinhood clients whose personal identifying information or other confidential information that was exposed to a hacker according to a November 8 notice sent out by the company. The notice sent to clients stated that, on November 3, 2021:

“The unauthorized party socially engineered a customer support employee by phone and obtained access to certain customer support systems. At this time, we understand that the unauthorized party obtained a list of email addresses for approximately five million people, and full names for a different group of approximately two million people. We also believe that for a more limited number of people – approximately 310 in total – additional personal information, including name, date of birth, and zip code, was exposed, with a subset of approximately 10 customers having more extensive account details revealed. We are in the process of making appropriate disclosures to affected people.”

Robinhood clients impacted by this data breach could have viable claims for recovery if the victim can establish actual damages. If your credit has been compromised, if you have paid for credit monitoring, if you are the victim of a subsequent data breach that cost you money, you could have a viable claim for recovery. Stoltmann Law Offices is exploring all options to help victims of this data breach.

CNBC
FOX Business
The Wall Street Journal
Bloomberg
CBS
FOX News Channel
USA Today
abc NEWS
DATELINE
npr
Contact Information