WEBSTER BOOK LLP FILES CLASS ACTION AGAINST CAPITAL ONE FOR DATA BREACH
On July 30, 2019, Webster Book LLP and nationally recognized class action firm Heninger Garrison Davis, LLC filed a class action complaint against Capital One in federal court in Virginia for the data breach that exposed the personal information of tens of millions of consumers.
To view the Capital One Data Breach Class Action Complaint, click here.
To view the Capital One Data Breach Criminal Complaint, click here.
Capital One Data Breach exposes tens of millions of credit card applications.
A Capital One Data Breach has exposed the personal data of tens of millions of consumers who applied for Capital One credit cards. On July 29, 2019, the FBI arrested Paige A. Thompson for the alleged intrusion into Capital One’s servers. Thompson has been charged under federal law with Computer Fraud and Abuse.
What type of data was exposed by Capital One?
According to a Criminal Complaint filed in federal court, Capital One exposed a massive amount of personal information of consumers who applied for Capital One credit cards. According to Capital One, the data copied from Capital One’s servers includes primarily data related to credit card applications. Although some of the information in those applications had been encrypted, other information including applicants’ names, addresses, dates of birth, and information regarding their credit history had not been encrypted. According to Capital One, the data includes large numbers of credit card applications, likely tens of millions of applications. According to Capital One, that data includes approximately 120,000 Social Security Numbers and approximately 77,000 bank account numbers.
How did Capital One expose the personal data of tens of millions of consumers?
According to Capital One, a firewall misconfiguration permitted commands to reach and be executed by a cloud server, which enabled access to folders or buckets of data in Capital One’s storage space on the cloud server. According to Capital One, its logs show a number of connections or attempted connections to Capital One’s server from TOR exit nodes, and a number of connections from certain IP addresses, all of which Capital One believes relate to activity conducted by the same person involved in an April 21, 2019 intrusion, because they involve similar unusual communications through the misconfigured firewall to the server discussed above.
What recourse do I have if my data was exposed by Capital One?
Capital One is responsible for the safekeeping of data submitted by consumers. If you applied for a Capital One credit card, your data may have been exposed to fraudsters and you may have a claim for compensation.
How can I find legal representation?
Webster Book LLP offers a free consultation for these matters. If you would like to examine whether you have a claim arising from Capital One’s negligent disclosure of your personal information, please fill out the form below or call us at 888-987-9991.