Category: Cases
-
In re Marriott Int’l, Inc., Customer Data Sec. Breach Litig.
CISO Legal Case Summary: What happened in the Marriott Data breach? Background:This case involves a consolidated complaint filed by consumers against Marriott International, Inc. and related entities following a significant data breach. The breach occurred in the Starwood guest reservation database, which Marriott acquired in 2016. The breach exposed personal information of millions of guests,…
-
Shiyang Huang v. Equifax Inc. (In re Equifax Inc. Customer Data Sec. Breach Litig.)
CISO Legal Case Summary: The summary of the case and the Court’s decision, is explained below. You may also read about the events that led to the Equifax court case here. Background:This case arises from a 2017 data breach at Equifax Inc., which affected the personal information of approximately 147 million Americans. The breach led…
-
In re Sony Gaming Networks & Customer Data Sec. Breach Litig.
CISO Legal Case Summary: Background:This case involves a class action lawsuit against Sony entities (SCEA, SOE, SNE) following a data breach that compromised the personal information of millions of users. Plaintiffs allege that Sony failed to provide adequate network security, leading to the breach. Key Allegations: Legal Claims:The plaintiffs brought multiple claims, including negligence, breach…
-
In re Horizon Healthcare Servs. Inc. Data Breach Litig.
CISO Legal Case Summary: The case involves a data breach at Horizon Healthcare Services, Inc., where two laptops containing unencrypted personal information of over 839,000 members were stolen. The plaintiffs, Courtney Diana, Mark Meisel, Karen Pekelney, and Mitchell Rindner, filed a class action lawsuit alleging violations of the Fair Credit Reporting Act (FCRA) and state…
-
In re 21ST Century Oncology Customer Data Sec. Breach Litig.
CISO Legal Case Summary: This case involves a data breach at 21st Century Oncology Holdings, Inc., which compromised the personal information of approximately 2.2 million patients. The plaintiffs filed a consolidated class action complaint alleging various claims, including negligence and breach of contract. The defendants moved to dismiss the complaint, arguing lack of standing and…
-
In re Capital One Consumer Data Sec. Breach Litig., MDL No. 1:19md2915 (AJT/JFA)
CISO Legal Case Summary: This case involves a data breach at Capital One, where plaintiffs sought the production of a report prepared by Mandiant, a cybersecurity firm, following the breach. Capital One objected to the production of the report, claiming it was protected as work product. The court reviewed the objections and determined whether the…
-
Customer Data Sec. Breach Litig. Melissa Alleruzzo v. Supervalu, Inc. (In re Supervalu, Inc.)
CISO Legal Case Summary: This case involves a class action lawsuit against SuperValu, Inc., AB Acquisition, LLC, and New Albertsons, Inc. following two cyberattacks in 2014 that allegedly compromised customers’ financial information. The plaintiffs, who shopped at the defendants’ stores using credit or debit cards, claimed their card information was stolen, leading to potential identity…
-
In re Premera Blue Cross Customer Data Sec. Breach Litig.
To see what happened in this breach, The CISO Legal Summary of Events is here. CISO Legal Case Summary: This case involves a class action settlement related to a data breach at Premera Blue Cross, which compromised the sensitive information of approximately 11 million individuals. The breach exposed personal data, including names, social security numbers,…
-
In re Yahoo! Inc. Customer Data Sec. Breach Litig.
CISO Legal Case Summary: This case involves a class action settlement related to multiple data breaches at Yahoo! Inc. and Aabaco Small Business, LLC, affecting approximately 194 million users. The breaches occurred between 2012 and 2016, compromising users’ personal information. The court evaluated the fairness, adequacy, and reasonableness of the proposed settlement, which included monetary…
-
In re Dominion Dental Servs. USA, Inc. Data Breach Litig.
CISO Legal Case Summary: This case involves a data breach at Dominion National, where hackers accessed sensitive personal, financial, and medical information of customers from August 2010 to April 2019. The plaintiffs filed a motion to compel the defendants to produce a report by cybersecurity firm FireEye Mandiant, which was created following the breach. The…