Exposing Private Information
Kimpton Hotel & Restaurant Group, LLC is settling a class action centering on a data breach that took place from February 16 to July 7, 2016. The attack installed malware on servers that processed payment cards, taking card numbers, expiration dates, and verification codes, and in some cases cardholder names as well.
This class action concerns Americans working in a Joint Defense Facility Pine Gap (JDFPG) in Alice Springs, Northern Territory, Australia. The complaint alleges that private tax information was illegally disclosed to their employers, and that the employees were later coerced into agreeing to disclosure of their tax information, to ensure that they were completing their returns as their employers wished.
Community Health Systems Professional Services Corporation (CHSPSC) is settling a suit consolidating a number of class actions about a data breach in its systems in April and June 2014. The breach is believed to have been perpetrated by an Advanced Persistent Threat group originating in China.
This settlement resolves a class action that alleged that Sonic Corporation did not take adequate measures to prevent a data breach that occurred during 2017, exposing customer information.
A fund of $2 million is the result of a settlement between Arby’s Restaurant Group, Inc. and plaintiffs who filed a class action about an Arby’s data breach. The cyberattack targets certain corporate-owned Arby’s restaurants and exposed customer payment card information. The complaint alleges that Arby’s was responsible for the data breach.
Experian is putting aside $22 million to settle a class action regarding a data breach that took place in September 2015. The complaint alleged that Experian did not take adequate precautions to prevent the data breach, which exposed the personal information of approximately 15 million T-Mobile customers who applied for services or device financing through September 16, 2015.
FCH Enterprises, Inc. owns Zippy’s Restaurant, Napoleon’s Bakery, Kahala Sushi, Pearl City Sushi, and Pomaika’I Ballrooms, all in Hawaii. This class action alleged that FCH allowed a data breach that exposed credit and debit card information between November 23, 2017 and March 29, 2018.
The complaint for this class action alleges that Marriott International, Inc. failed to use industry-standard security measures and failed to encrypt sensitive personal information. It also claims that Marriott failed to notice the data breach for as long as four years.
Facebook, Inc. has again exposed the personal information of users, this time in a data breach announced on September 28, 2018. The complaint for this class action claims that the company’s “lax security practices” led to the breach, which exposed information pertaining to some thirty million Facebook users.
Wendy’s will pay more than $3 million to settle a class action alleging it was at fault when the point-of-sale systems at certain of its franchised restaurants were breached between 2015 and 2016. The malware used in the breach permitted the hackers to obtain customer payment card information.