Author: CISO Legal
-
Describing the Equifax Data Breach
The Equifax data breach in 2017 was a major cybersecurity incident that exposed the sensitive personal information of 147 million Americans. Like most major breaches, the Equifax breach resulted in Court action. Here’s a breakdown: What Happened:
-
Marriott Data Breach
Marriott Breach Summary Incident Overview:In November 2018, Marriott International disclosed a massive data breach affecting its Starwood division, which included brands like Sheraton, Westin, and W Hotels. The breach was detected after an internal security tool flagged an unauthorized access attempt to the Starwood guest reservation database on September 8, 2018. The incident, which began…
-
Premera Blue Cross Cyber Breach
In March 2015, Premera Blue Cross disclosed a significant data breach that affected millions of its users. This resulted in cyber litigation, read the court opinion. Here’s a summary based on available information: This breach served as a significant example of the cybersecurity challenges facing the healthcare industry and underscored the need for robust data…
-
Cyberlaws for Businesses – Jan 2025 Edition
Corporations should be particularly aware of several key cyber laws and regulations that govern data protection, privacy, and cybersecurity practices. Here are some of the most significant ones: Corporations must also be aware of sector-specific laws like those from the National Institute of Standards and Technology (NIST) for cybersecurity frameworks or the North American Electric…
-
In re Marriott Int’l, Inc., Customer Data Sec. Breach Litig.
CISO Legal Case Summary: What happened in the Marriott Data breach? Background:This case involves a consolidated complaint filed by consumers against Marriott International, Inc. and related entities following a significant data breach. The breach occurred in the Starwood guest reservation database, which Marriott acquired in 2016. The breach exposed personal information of millions of guests,…
-
Shiyang Huang v. Equifax Inc. (In re Equifax Inc. Customer Data Sec. Breach Litig.)
CISO Legal Case Summary: The summary of the case and the Court’s decision, is explained below. You may also read about the events that led to the Equifax court case here. Background:This case arises from a 2017 data breach at Equifax Inc., which affected the personal information of approximately 147 million Americans. The breach led…
-
In re Sony Gaming Networks & Customer Data Sec. Breach Litig.
CISO Legal Case Summary: Background:This case involves a class action lawsuit against Sony entities (SCEA, SOE, SNE) following a data breach that compromised the personal information of millions of users. Plaintiffs allege that Sony failed to provide adequate network security, leading to the breach. Key Allegations: Legal Claims:The plaintiffs brought multiple claims, including negligence, breach…
-
In re Horizon Healthcare Servs. Inc. Data Breach Litig.
CISO Legal Case Summary: The case involves a data breach at Horizon Healthcare Services, Inc., where two laptops containing unencrypted personal information of over 839,000 members were stolen. The plaintiffs, Courtney Diana, Mark Meisel, Karen Pekelney, and Mitchell Rindner, filed a class action lawsuit alleging violations of the Fair Credit Reporting Act (FCRA) and state…
-
In re 21ST Century Oncology Customer Data Sec. Breach Litig.
CISO Legal Case Summary: This case involves a data breach at 21st Century Oncology Holdings, Inc., which compromised the personal information of approximately 2.2 million patients. The plaintiffs filed a consolidated class action complaint alleging various claims, including negligence and breach of contract. The defendants moved to dismiss the complaint, arguing lack of standing and…
-
In re Capital One Consumer Data Sec. Breach Litig., MDL No. 1:19md2915 (AJT/JFA)
CISO Legal Case Summary: This case involves a data breach at Capital One, where plaintiffs sought the production of a report prepared by Mandiant, a cybersecurity firm, following the breach. Capital One objected to the production of the report, claiming it was protected as work product. The court reviewed the objections and determined whether the…