Sign Up
All SecurityCyber-crimePatchesResearchCSO
All Off-PremEdge + IoTChannelPaaS + IaaSSaaS
All On-PremSystemsStorageNetworksHPCPersonal TechCxOPublic Sector
All SoftwareAI + MLApplicationsDatabasesDevOpsOSesVirtualization
All OffbeatDebatesColumnistsScienceGeek's GuideBOFHLegalBootnotesSite NewsAbout Us

Security

Surprising nobody, lawyers line up to sue the crap out of Equifax

Class actions already piling up against identity theft brokers

Shaun Nichols in San Francisco Fri 8 Sep 2017  //  18:43 UTC

Less than 24 hours after credit monitors Equifax revealed it had lost the personal data of more than 130 million Americans, two class action suits have been filed.

The suits, separately filed in the Portland, Oregon and North Georgia US District Courts, accuse the credit reporting company of negligence and violations of the US Fair Credit Reporting Act.

Both reference yesterday's disclosure from Equifax that it managed to lose personally identifiable information like social security and credit card numbers when an outside attacker was able to slurp data through a vulnerable web application.

Now, lawyers are lining up to make sure that those who have been exposed in the leak can claim a share of the payout.

The Oregon complaint [PDF] will reportedly seek as much as $70bn in damages for residents of that state alone.

"The exact number of aggrieved consumers in Oregon can be determined based on Equifax's consumer database, estimated at 2,860,000 consumers – about half the population of Oregon," attorneys representing the class argue.

Stand up who HASN'T been hit in the Equifax mega-hack – whoa, whoa, sit down everyone

READ MORE

Meanwhile, the complaint in North Georgia [PDF] has the potential to be even bigger, as the district is home to Equifax's main headquarters in Atlanta. That suit seeks damages not only for negligence, but also for violations of federal and state credit reporting laws.

"Equifax had the resources to prevent a breach, but neglected to adequately invest in data security, despite the growing number of well-publicized data breaches," the complaint reads.

"Had Equifax remedied the deficiencies in its data security systems, followed security guidelines, and adopted security measures recommended by experts in the field, Equifax would have prevented the Data Breach and, ultimately, the theft of its customers' PII."

And if you're convinced things can't get any worse for Equifax, well, just go and check the fine print on the site they have set up to let Americans check if their details were exposed in the leak. The Terms and Conditions would bar users from suing the company.

That caught the attention of New York Attorney General John Schneiderman.

Wall Street isn't particularly thrilled with Equifax either. As of mid-day Friday, the company's stock was down nearly 14 per cent. ®
Send us news
52 Comments

Google sues app devs, claims they're Play Store crypto scammers with 100k+ victims

The pair allegedly made 87 apps since 2019 and defrauded folks of tens of thousands of dollars

Despite two previous court victories, Tesla settles third Autopilot liability case

Amount sealed because it would result in 'serious injury,' say company lawyers

Judge refuses to Ctrl-Z divorce order made by a misclick

Computer says you're single

Twitter's lawsuit against anti-hate-speech crusaders gets SLAPPed out of court

How's that free comment thing working out, Elon?

SEC cleared to take securities beef against Coinbase to trial

Judge says watchdog can HODL four of its five charges against crypto exchange

Cloud server host Vultr rips user data licensing clause from ToS amid web 'confusion'

We know the average customer doesn't have a law degree, CEO tells us

Boeing and subsidiary file trade secrets lawsuit against Virgin Galactic

Oh, and there's small matter of an alleged $26M in unpaid bills

Congress votes unanimously to ban brokers selling American data to enemies

At least we can all agree on something

SAP accused of age discrimination, retaliation by US whistleblower

Complainant moved to 'retire in place' role after Sarbanes Oxley Act report, filing alleges

UK tech titan Mike Lynch's US fraud trial begins today

13-year saga continues as jury set to hear claims on both sides of HP's Autonomy acquisition disaster

Meta sues ex infra VP for allegedly stealing top-secret datacenter blueprints

Exec accused of using own work PC to swipe confidential AI and staffing docs for stealth cloud startup

Google co-founder Brin named a defendant in wrongful death complaint

Lawsuit accuses contractor and co-defendants of 'pacify and delay' tactics