NEWS & UPDATES

Affecting around nine million customers, the easyJet cyberattack was one of the biggest data security incidents of last year. In May, it was reported that easyJet had identified an attack in January, described as “highly sophisticated” in a statement to the media.

While many had travel and contact details exposed, there were also some victims who had their financial information accessed. Regardless of the type of details exposed, millions were made vulnerable to security risks that they would not have faced had easyJet succeeded in defending the attack.

We began taking on claims soon after the attack was announced, and we are continuing to support those victims who want to claim the compensation they deserve. You have a right to expect that your data is stored securely by third parties, and where data controllers fail in their legal obligations, you could be eligible to recover thousands of pounds in compensation. If you were a victim of the easyJet cyberattack, as we mark one year passing since news of the breach, you can still claim now – No Win, No Fee.

Read More

In 2018, British Airways suffered two data breach incidents, affecting hundreds of thousands of customers. The breaches both subjected personal data to unauthorised access by hackers, leaving victims vulnerable to scams and fraud. We have been taking on British Airways data breach claims since 2018 and are taking forward a large group of Claimants, so we are determined to see that as many victims as possible can access the justice they deserve.

The deadline to join the group action has already been extended to June, which means victims only have a few weeks left to start their claim as things stand. Those affected could be entitled to thousands of pounds in compensation, and you can sign-up for a No Win, No Fee legal case on the BA Group Action website here.

As leading data breach and consumer action lawyers, we are here to help.

Read More

Whether it brings a healthcare organisation to a standstill, or causes the exposure of swathes of patient medical records, a health data breach can have serious repercussions.

In fact, the impact of a cyberattack can be worsened if the healthcare organisation in question does not have the appropriate security defences in place.

Every business or organisation is legally required to protect the personal data under their supervision, so data controllers can be held responsible if they breach this duty. We aim to help anyone who has fallen victim to a data breach to claim the compensation they deserve. This is not only to see justice done, but to also to make sure that organisations are dissuaded from acting carelessly again.

Read More

Reports have recently emerged detailing the events of the Fat Face data breach, following the company’s decision to send out an email to affected customers. Victims were reportedly told to keep the information about the incident private.

The data breach itself is understood to have occurred in January, but it was not until the end of March that customers learned of the exposure of their information. Investigations by Fat Face has established that some systems were reportedly subjected to unauthorised access, affecting both customer and employee data. It has also been alleged that Fat Face paid a ransom to a cybercrime gang, though neither the company nor the ICO, the data protection regulator, appear to have confirmed this claim.

Those who have had their private information exposed in the Fat Face data breach may be able to recover compensation for the harm caused. Everyone has a right to adequate data protection. If companies fail in this duty, they can be liable to issue pay-outs to those affected.

Read More

SITA, an IT systems provider for much of the aviation industry, recently encountered a cyberattack described as “highly sophisticated”, which provoked a leak of passenger data from its servers at the end of February. The SITA data breach was monumental in scale, affecting hundreds of thousands of customers across several notable airlines.

Affected airlines included those under the Star Alliance group, such as Lufthansa and Singapore Airlines. It also included British Airways, which is currently the subject of our group action following two seismic data breaches in 2018.

The travel industry has long been targeted by cybercriminals. Examples include the Marriott data breach and the easyJet data breach, so it is unsurprising that hackers have sought to steal further information by attacking a company that serves so much of the global aviation industry. The breach is not believed to have exposed any highly sensitive data, but it must act as a wake-up call to airlines and other travel companies. The sector must now look to protect data from an incoming wave of sophisticated cyberattacks.

Read More

Email and phone scams continue to become more pervasive and varied as cybercrime grows, and one of the latest forms involves scammers claiming to work for Virgin Media.

The telecoms company has issued a warning in response to the reports of the fraudulent communication. Virgin Media suffered a notable data breach last year, and we are currently taking on claimants in a group action against the company. However, there is no evidence that these scammers are linked to the data breach, but there is a good reason as to why we need to look at how the two could, even if in theory, be linked.

Personal data is a valuable commodity to fraudsters, and there is a lot of money to be made by the theft and resale of private information. With a few simple contact details, scammers may be able to manipulate unsuspecting victims into handing over further personal data. This has happened before with data breaches and scammers have targeted victims, even passing themselves off as the breached company by exploiting exposed information. This is why it is important to talk about these issues in the context of a breach.

Read More

Not long into the new academic year, the Northumbria University cyberattack shook the campus IT systems in early September 2020, forcing those at the top to close the campus and postpone scheduled exams.

It remains unclear whether any long-lasting damage was caused by the attack. In our experience as data breach lawyers, we have seen large-scale attacks such as this endanger or expose significant quantities of personal information.

Northumbria is not the first university to have experienced such an attack, a fact that highlights the particular vulnerability of higher education institutions to such malicious cybercrime. In university cyberattacks, employees and students can be adversely affected by the exposure of their personal data, for which they are often able to make a compensation claim. If it emerges that Northumbria University failed to protect personal data, we may be able to help anyone affected.

Read More

As criminals become increasingly adept at accessing and using private data for their own gain, data breaches are becoming increasingly risky for the victims. If criminals abuse your exposed data to commit fraud, you might be able to claim compensation for identity theft.

Identity theft is one of the most significant risks of data breaches, as criminals can use even the smallest amounts of personal data to form a picture of a person’s identity. Whether they experience the effects of identity theft or not, the exposure to such risks can be extremely distressing for data breach victims.

As a leading firm of data breach lawyers, we aim to support any victims who have been made vulnerable to this devastating crime, many of whom may be eligible to claim compensation.

Read More

At the end of December 2020, it was revealed that the Transform Hospital Group had been targeted by a devastating cyberattack.

The attack, which took the form of a ransomware hack, resulted in the theft of customer data from the plastic surgery chain, and the hackers behind the attack have since been threatening to publish the information online.

The hackers are understood to have made it known that they have 900 gigabytes of ‘before and after’ pictures in their possession, which they are threatening to publish if a ransom is not paid. Understandably, many of the victims are extremely concerned that their private data can now be exposed in this way. The Data Breach Lawyers have already taken on affected clients, and we encourage further victims to come forward for advice on their potential claim.

Read More

The Prestige Software data breach has exposed millions of guest records online in a breach from their online cloud database.

Prestige Software operates one of the biggest hotel online services. This includes Booking.com, Expedia, and Hotels.com all using their online reservation software.

It is unknown yet if the information has been accessed by criminals and remains to be seen if the data will be used in a malicious way. In response to the breach, Prestige Software said:

‘We have informed our clients, keeping them updated on the incident as well as on its main features. In conclusion, we have taken measures to diligently react to this incident which, according to the information that we are managing right now, should actually have had very limited effects.’

Read More

The Wisepay data breach occurred over several days between 2^nd and 5^th October 2020. The school services breach is said to have affected over 300 schools’ payments systems over the weekend that it occurred.

We understand that hackers managed to gain access to Wisepay’s systems to gather sensitive information as part of the cyberattack that remained undetected for two full days.

As a specialist law firm with years of experience in the complex field of data breach law, we are here to help you now. We currently represent thousands of claimants for signal cases and in dozens multi-party and group actions, with millions of pounds in damages recovered. We are passionate about fighting for justice for victims of data breaches and we can offer No Win, No Fee legal representation.  

Read More

Websites, systems and services have been offline for over a week after the Flagship Group cyberattack hit the housing company.

An official statement from Flagship Group’s website informs us that, on the 1^st November 2020, a major cyberattack occurred that has resulted in most of their systems being taken offline. In quick response to the attack, Flagship Homes took many of their systems and services down to prevent the spread of the event.

It is currently unknown exactly how many people have been affected by the Flagship Group cyberattack. However, it has been confirmed that some personal data has been compromised in the breach. Flagship Group has warned customers to be wary of potential cold calls and phishing emails that could result in fraudulent activity.

Read More