Category: Group Actions
Every data breach can have a damaging impact on its victims, but the most impactful are perhaps those which happen at large corporations or organisations. The sheer amount of information exposed can be huge if a large company’s systems are subjected to a hack or a security error. In the most wide-reaching cases, thousands or even millions of victims could become vulnerable to criminal activity. Groups of data breach victims can claim compensation together in data breach group action cases, and we engage in this style of work a lot.
We have played a key role in many consumer group actions over the years, helping thousands of victims to achieve justice and win the compensation that they deserve. There can be strength in numbers – claiming in one group can allow us to present a strong, collective force against the defendants, and it can also demonstrate how harmful the implications of the data breach have been.
Affecting around nine million customers, the easyJet cyberattack was one of the biggest data security incidents of last year. In May, it was reported that easyJet had identified an attack in January, described as “highly sophisticated” in a statement to the media.
While many had travel and contact details exposed, there were also some victims who had their financial information accessed. Regardless of the type of details exposed, millions were made vulnerable to security risks that they would not have faced had easyJet succeeded in defending the attack.
We began taking on claims soon after the attack was announced, and we are continuing to support those victims who want to claim the compensation they deserve. You have a right to expect that your data is stored securely by third parties, and where data controllers fail in their legal obligations, you could be eligible to recover thousands of pounds in compensation. If you were a victim of the easyJet cyberattack, as we mark one year passing since news of the breach, you can still claim now – No Win, No Fee.
In 2018, British Airways suffered two data breach incidents, affecting hundreds of thousands of customers. The breaches both subjected personal data to unauthorised access by hackers, leaving victims vulnerable to scams and fraud. We have been taking on British Airways data breach claims since 2018 and are taking forward a large group of Claimants, so we are determined to see that as many victims as possible can access the justice they deserve.
The deadline to join the group action has already been extended to June, which means victims only have a few weeks left to start their claim as things stand. Those affected could be entitled to thousands of pounds in compensation, and you can sign-up for a No Win, No Fee legal case on the BA Group Action website here.
As leading data breach and consumer action lawyers, we are here to help.
Reports have recently emerged alleging that Foxtons Group, one of Britain’s largest estate agents, was aware that masses of financial data belonging to their customers had been reportedly exposed on the dark web but neglected to notify their customers. The news of the Foxtons Group data breach issues first emerged following a malware attack on the estate agency in October last year, after which it was stated that “sensitive data” had not been exposed. Foxtons then reportedly learned in January that private information had found its way to the dark web, but it reportedly failed to make customers aware of this fact, leaving it to news outlets to publish the allegations.
We believe that, on the face of things, the reported inaction of Foxtons Group is a significant cause for concern. It is worrying for customers to learn that their data may have been being misused by cybercriminals without their knowledge that it had even been stolen.
Whether it brings a healthcare organisation to a standstill, or causes the exposure of swathes of patient medical records, a health data breach can have serious repercussions.
In fact, the impact of a cyberattack can be worsened if the healthcare organisation in question does not have the appropriate security defences in place.
Every business or organisation is legally required to protect the personal data under their supervision, so data controllers can be held responsible if they breach this duty. We aim to help anyone who has fallen victim to a data breach to claim the compensation they deserve. This is not only to see justice done, but to also to make sure that organisations are dissuaded from acting carelessly again.
Current and former employees have recently been notified of the Arup data breach, after the company was reportedly made aware of a cybersecurity incident at its third-party payroll provider.
Following routine procedure, we understand that Arup has sent a data breach notification email to those affected, informing them of information that may have been compromised by the breach. Anyone paid by Arup via payroll over the past three years could potentially have been affected.
We believe that those affected by the Arup data breach may be eligible to recover compensation for any harm caused by the exposure of their private information. Data controllers have a legal obligation to protect the information in their possession. Where this duty is not upheld, companies can be liable to pay compensation amounts. If you have been contacted by Arup regarding your involvement in the Arup data breach, you can contact us to receive advice on your right to claim.
A recent report by HoldtheFrontPage has revealed that the Midlands News Association has been hit by a data security incident. The incident allegedly allowed an unauthorised third party to access the private details of journalists hired by the regional newspaper company.
The company does not appear to have disclosed the number of affected victims, but it has been revealed that information relating to the journalists has reportedly already been published online. Whenever a data breach occurs, the data controller responsible for the breach could be liable to pay compensation. Those who had their data exposed from the Midlands News Association may, therefore, be eligible to make a claim on a No Win, No Fee basis.
If you have been informed that your data was affected, we are happy to offer free and no-obligation advice on your potential eligibility for a compensation claim.
The recent Birmingham City Council data breach has caused the exposure of private residents’ information, allegedly including details relating to vulnerable children (although this has reportedly been disputed).
As is the case in many council data breaches, the incident appears to have occurred as a result of human error, when staff mistakenly uploaded private information to a public access website. According to the council, the data was swiftly taken down, but the time for which it was uploaded may have been long enough to make the information accessible to unauthorised third parties.
In cases such as this, it may appear that little harm has been done, but all data breach incidents can be capable of causing significant distress for the victims. We trust local authorities like Birmingham City Council to safeguard our data. When they fail in this duty, they can be liable to compensate the victims for the harm caused.
As a firm of data breach claims solicitors, we are steadfast in our determination to help data breach victims to achieve justice for the untold distress and loss they have suffered. The Data Breach Lawyers is often at the forefront of new, evolving areas of data protection law, aiming to make sure no one who has their legal rights breached is left behind.
Developing our expertise over a number of years, our knowledge of this niche area of law is what allows us to be such staunch defenders of our clients’ legal rights. Unfortunately, many businesses and organisations continue to fail to protect personal data, but we know how to apply our skills and experience to make sure that they are held to account.
From the 56 Dean Street Clinic breach, to the huge group action against British Airways, our data breach experience spans several years. Read on to find out more about our ground-breaking work in this area of law.
SITA, an IT systems provider for much of the aviation industry, recently encountered a cyberattack described as “highly sophisticated”, which provoked a leak of passenger data from its servers at the end of February. The SITA data breach was monumental in scale, affecting hundreds of thousands of customers across several notable airlines.
Affected airlines included those under the Star Alliance group, such as Lufthansa and Singapore Airlines. It also included British Airways, which is currently the subject of our group action following two seismic data breaches in 2018.
The travel industry has long been targeted by cybercriminals. Examples include the Marriott data breach and the easyJet data breach, so it is unsurprising that hackers have sought to steal further information by attacking a company that serves so much of the global aviation industry. The breach is not believed to have exposed any highly sensitive data, but it must act as a wake-up call to airlines and other travel companies. The sector must now look to protect data from an incoming wave of sophisticated cyberattacks.
Email and phone scams continue to become more pervasive and varied as cybercrime grows, and one of the latest forms involves scammers claiming to work for Virgin Media.
The telecoms company has issued a warning in response to the reports of the fraudulent communication. Virgin Media suffered a notable data breach last year, and we are currently taking on claimants in a group action against the company. However, there is no evidence that these scammers are linked to the data breach, but there is a good reason as to why we need to look at how the two could, even if in theory, be linked.
Personal data is a valuable commodity to fraudsters, and there is a lot of money to be made by the theft and resale of private information. With a few simple contact details, scammers may be able to manipulate unsuspecting victims into handing over further personal data. This has happened before with data breaches and scammers have targeted victims, even passing themselves off as the breached company by exploiting exposed information. This is why it is important to talk about these issues in the context of a breach.
In March 2020, Virgin Media announced a shocking revelation about (mainly) customer data being exposed, and the Virgin Media data group action was launched as a result.
The telecoms giant admitted that the personal information of 900,000 customers had been exposed in a large-scale incident. The leak resulted in swathes of people’s information being potentially vulnerable to significant data security risks. As a result, we were compelled into action, and the legal case for justice is in full swing.
We are taking on more and more claims all the time in our fight for justice, and we wish to alert any affected victims that you can still be entitled to join if Virgin Media has notified you of your involvement in the data breach. Please be aware that there will likely be a court-imposed cut-off data for joining the action, so we recommend that you sign up to launch your claim as soon as possible.