Experian, T-Mobile Pay Up in Multimillion-Dollar Data Breach Settlements
Massachusetts Attorney General announced settlements across multiple states for damages from Experian's 2012 and 2015 breaches that violated consumer protection and notification laws.
Massachusetts Attorney General Maura Healey (now governor-elect) this week announced a one-two punch: Experian will pay $13.6 million in a multistate lawsuit settlement over its infamous data breaches in 2012 and 2015, which compromised personal information of millions of consumers nationwide; and T-Mobile will hand over $2.5 million for its customers who were affected by the 2015 breach at the credit-monitoring provider.
Some 15 million T-Mobile customer credit applications were exposed in the 2015 attack on Experian, which handled the processing of the mobile carrier's customer credit applications. Social Security numbers, birthdates, drivers' licenses, and passport information were among the exposed consumer data.
In addition to the settlement fees, both Experian and T-Mobile committed to taking steps to better secure data. Experian also must provide five years of free credit monitoring to people whose data was exposed — on top of the free services that had previously been provided to victims. T-Mobile also agreed to tighten up vendor oversight.
AG Healey helped lead the investigation into the 2012 data breach, working with attorneys general in Connecticut, Illinois, Indiana, Maryland, New Jersey, North Carolina, Texas, and Vermont, and also worked on the 2015 breach investigation, headed up by the attorneys general of Connecticut, Illinois, Maryland, Texas, and Washington, DC.
About the Author
You May Also Like
A Cyber Pros' Guide to Navigating Emerging Privacy Regulation
Dec 10, 2024Identifying the Cybersecurity Metrics that Actually Matter
Dec 11, 2024The Current State of AI Adoption in Cybersecurity, Including its Opportunities
Dec 12, 2024Cybersecurity Day: How to Automate Security Analytics with AI and ML
Dec 17, 2024The Dirt on ROT Data
Dec 18, 2024