Class action suit alleges negligence in Website hack
A former employee of Aetna has filed a class action lawsuit (PDF) against the company following the breach of an employment Website that contained personal data and email from some 450,000 current, former, and prospective employees.
On May 28, Aetna disclosed that email data had been copied from its online employment Website. The company said the site contained information on approximately 450,000 employees and prospects, and that some of the email information had been used to create fake email to contact people whose information was stored on the site.
Approximately 65,000 Social Security numbers were stored on the site. Although the company confirmed that email data had been copied, Aetna says it has no reports that personal information or the Social Security data were copied. As a precaution, the company sent notification letters to all 65,000 of those whose Social Security data was involved and offered free credit monitoring services.
The federal class action, led by former employee Corneilus Allison, claims AETNA insurance allowed hackers to enter its Web site and gain access to personal information. It demands credit monitoring, punitive damages, costs, and other relief.
Aetna has not yet disclosed exactly how the breach occurred. The Website was taken down temporarily after the breach was discovered.
Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.
About the Author(s)
You May Also Like
The fuel in the new AI race: Data
April 23, 2024Securing Code in the Age of AI
April 24, 2024Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024