"We cover news and updates from the digital world with information on the latest legislation, high profile cases and changes in the online industry."
We specialise in representing victims for data breach compensation claims.
Information on how we handle your data is available in our Privacy Policy.
In recent years, several monumental travel industry data breaches have hit the headlines, highlighting how travel companies are prime targets for hackers seeking to harvest personal data. However, the travel industry is not just targeted for its wealth of sensitive information – many reports and exposés have revealed that too many travel companies have failed, and continue to fail, to simply protect customer data.
The extensive reports of poor data security in the travel industry demand a strong response, which is why we are representing affected customers of a number of travel industry data breaches. Our huge British Airways data breach group action is the first GDPR Group Litigation Order in England and Wales, and we are looking to recover thousands of pounds in compensation for our clients.
If you have suffered the harmful effects of a data protection breach, we are here to help.
In May 2020, the news of the easyJet cyberattack broke, and the airline revealed that around 9 million customers had been impacted by what it labelled a “highly sophisticated cyber-attack”.
We are now representing people for an easyJet cyberattack compensation action to ensure that as many victims as possible can recover compensation for any harm caused.
The travel industry is often a target for cybercriminals, with British Airways and Marriott numbering among the other companies to have suffered major data breaches in recent years. Yet cybercriminals alone cannot be blamed for these breaches. EasyJet should be held accountable for the security vulnerabilities that allowed an attack of this scale to occur, if this is what has taken place.
Affecting around nine million customers, the easyJet cyberattack was one of the biggest data security incidents of last year. In May, it was reported that easyJet had identified an attack in January, described as “highly sophisticated” in a statement to the media.
While many had travel and contact details exposed, there were also some victims who had their financial information accessed. Regardless of the type of details exposed, millions were made vulnerable to security risks that they would not have faced had easyJet succeeded in defending the attack.
We began taking on claims soon after the attack was announced, and we are continuing to support those victims who want to claim the compensation they deserve. You have a right to expect that your data is stored securely by third parties, and where data controllers fail in their legal obligations, you could be eligible to recover thousands of pounds in compensation. If you were a victim of the easyJet cyberattack, as we mark one year passing since news of the breach, you can still claim now – No Win, No Fee.
In 2018, British Airways suffered two data breach incidents, affecting hundreds of thousands of customers. The breaches both subjected personal data to unauthorised access by hackers, leaving victims vulnerable to scams and fraud. We have been taking on British Airways data breach claims since 2018 and are taking forward a large group of Claimants, so we are determined to see that as many victims as possible can access the justice they deserve.
The deadline to join the group action has already been extended to June, which means victims only have a few weeks left to start their claim as things stand. Those affected could be entitled to thousands of pounds in compensation, and you can sign-up for a No Win, No Fee legal case on the BA Group Action website here.
As leading data breach and consumer action lawyers, we are here to help.
Reports have recently emerged alleging that Foxtons Group, one of Britain’s largest estate agents, was aware that masses of financial data belonging to their customers had been reportedly exposed on the dark web but neglected to notify their customers. The news of the Foxtons Group data breach issues first emerged following a malware attack on the estate agency in October last year, after which it was stated that “sensitive data” had not been exposed. Foxtons then reportedly learned in January that private information had found its way to the dark web, but it reportedly failed to make customers aware of this fact, leaving it to news outlets to publish the allegations.
We believe that, on the face of things, the reported inaction of Foxtons Group is a significant cause for concern. It is worrying for customers to learn that their data may have been being misused by cybercriminals without their knowledge that it had even been stolen.
Whether it brings a healthcare organisation to a standstill, or causes the exposure of swathes of patient medical records, a health data breach can have serious repercussions.
In fact, the impact of a cyberattack can be worsened if the healthcare organisation in question does not have the appropriate security defences in place.
Every business or organisation is legally required to protect the personal data under their supervision, so data controllers can be held responsible if they breach this duty. We aim to help anyone who has fallen victim to a data breach to claim the compensation they deserve. This is not only to see justice done, but to also to make sure that organisations are dissuaded from acting carelessly again.
Current and former employees have recently been notified of the Arup data breach, after the company was reportedly made aware of a cybersecurity incident at its third-party payroll provider.
Following routine procedure, we understand that Arup has sent a data breach notification email to those affected, informing them of information that may have been compromised by the breach. Anyone paid by Arup via payroll over the past three years could potentially have been affected.
We believe that those affected by the Arup data breach may be eligible to recover compensation for any harm caused by the exposure of their private information. Data controllers have a legal obligation to protect the information in their possession. Where this duty is not upheld, companies can be liable to pay compensation amounts. If you have been contacted by Arup regarding your involvement in the Arup data breach, you can contact us to receive advice on your right to claim.
Reports have recently emerged detailing the events of the Fat Face data breach, following the company’s decision to send out an email to affected customers. Victims were reportedly told to keep the information about the incident private.
The data breach itself is understood to have occurred in January, but it was not until the end of March that customers learned of the exposure of their information. Investigations by Fat Face has established that some systems were reportedly subjected to unauthorised access, affecting both customer and employee data. It has also been alleged that Fat Face paid a ransom to a cybercrime gang, though neither the company nor the ICO, the data protection regulator, appear to have confirmed this claim.
Those who have had their private information exposed in the Fat Face data breach may be able to recover compensation for the harm caused. Everyone has a right to adequate data protection. If companies fail in this duty, they can be liable to issue pay-outs to those affected.
SITA, an IT systems provider for much of the aviation industry, recently encountered a cyberattack described as “highly sophisticated”, which provoked a leak of passenger data from its servers at the end of February. The SITA data breach was monumental in scale, affecting hundreds of thousands of customers across several notable airlines.
Affected airlines included those under the Star Alliance group, such as Lufthansa and Singapore Airlines. It also included British Airways, which is currently the subject of our group action following two seismic data breaches in 2018.
The travel industry has long been targeted by cybercriminals. Examples include the Marriott data breach and the easyJet data breach, so it is unsurprising that hackers have sought to steal further information by attacking a company that serves so much of the global aviation industry. The breach is not believed to have exposed any highly sensitive data, but it must act as a wake-up call to airlines and other travel companies. The sector must now look to protect data from an incoming wave of sophisticated cyberattacks.
Email and phone scams continue to become more pervasive and varied as cybercrime grows, and one of the latest forms involves scammers claiming to work for Virgin Media.
The telecoms company has issued a warning in response to the reports of the fraudulent communication. Virgin Media suffered a notable data breach last year, and we are currently taking on claimants in a group action against the company. However, there is no evidence that these scammers are linked to the data breach, but there is a good reason as to why we need to look at how the two could, even if in theory, be linked.
Personal data is a valuable commodity to fraudsters, and there is a lot of money to be made by the theft and resale of private information. With a few simple contact details, scammers may be able to manipulate unsuspecting victims into handing over further personal data. This has happened before with data breaches and scammers have targeted victims, even passing themselves off as the breached company by exploiting exposed information. This is why it is important to talk about these issues in the context of a breach.
Not long into the new academic year, the Northumbria University cyberattack shook the campus IT systems in early September 2020, forcing those at the top to close the campus and postpone scheduled exams.
It remains unclear whether any long-lasting damage was caused by the attack. In our experience as data breach lawyers, we have seen large-scale attacks such as this endanger or expose significant quantities of personal information.
Northumbria is not the first university to have experienced such an attack, a fact that highlights the particular vulnerability of higher education institutions to such malicious cybercrime. In university cyberattacks, employees and students can be adversely affected by the exposure of their personal data, for which they are often able to make a compensation claim. If it emerges that Northumbria University failed to protect personal data, we may be able to help anyone affected.
As criminals become increasingly adept at accessing and using private data for their own gain, data breaches are becoming increasingly risky for the victims. If criminals abuse your exposed data to commit fraud, you might be able to claim compensation for identity theft.
Identity theft is one of the most significant risks of data breaches, as criminals can use even the smallest amounts of personal data to form a picture of a person’s identity. Whether they experience the effects of identity theft or not, the exposure to such risks can be extremely distressing for data breach victims.
As a leading firm of data breach lawyers, we aim to support any victims who have been made vulnerable to this devastating crime, many of whom may be eligible to claim compensation.
Speak to our team now for help and advice.
Fill out our quick claim form below and we’ll contact
you when you’re ready to talk to us.
All fields marked * are required.
