Numrich Gun Parts Corporation, which sells parts for firearms, experienced a data breach in the early part of 2022. The complaint alleges that hackers were able to gain access to customers’ personal information and their payment card data (PCD), because Numrich did not adequately protect the information in its systems.
The class for this action is all persons in the US whose personal and financial information was compromised in the data breach Numrich disclosed in June 2022.
The complaint alleges that the data breach took place between January 23 and April 5, 2022. It claims that Numrich found suspicious activity on its website on March 28, 2022. The complaint alleges, “on information and belief,” that the hackers were able to gain access to the PCD of customers who made purchases on the website during that period.
Even worse, the complaint alleges that Numrich would not shut down the e-commerce on its website even after it discovered the data breach and before it issued any warnings about the data breach.
The complaint suggests that the information obtained included names, addresses, payment card numbers, card security codes, and expiration dates, and claims that more than 45,000 individuals were affected.
“When Numrich finally announced the Data Breach,” the complaint claims, “it deliberately underplayed the breach’s severity and misrepresented that it was ‘unaware of any actual misuse of information related to [the breach],’ even though Numrich knew cybercriminals had infiltrated its website and data for months.”
According to the complaint, even when Numrich did release a Breach Notice, it omitted important information, such as how the breach had happened or why it had taken the company so long to put out “a bare-bones notice.”
The complaint alleges that customers whose information was compromised are “victims of [Numrich’s] negligence and inadequate security measures” and that the company “failed to properly use up-to-date security practices to prevent the Data Breach.”
The complaint quotes Numrich as saying, after the discovery of the data breach, that it “took steps to confirm the security of [its] systems … [and] worked quickly to secure [its] website and implement additional network and endpoint monitoring to reduce the risk of recurrence.” But the complaint contends that Numrich should have taken these measures before the data breach, in order to prevent it.
Also, the complaint asserts, “On information and belief, Numrich does not adequately train its employees on cybersecurity polcies, enforce those policies, or maintain reasonable security practices and systems.”
Article Type: LawsuitTopic: Privacy
Most Recent Case Event
Numrich Gun Parts Data Breach Complaint
June 24, 2022
Numrich Gun Parts Corporation, which sells parts for firearms, experienced a data breach in the early part of 2022. The complaint alleges that hackers were able to gain access to customers’ personal information and their payment card data (PCD), because Numrich did not adequately protect the information in its systems.
Numrich Gun Parts Data Breach ComplaintCase Event History
Numrich Gun Parts Data Breach Complaint
June 24, 2022
Numrich Gun Parts Corporation, which sells parts for firearms, experienced a data breach in the early part of 2022. The complaint alleges that hackers were able to gain access to customers’ personal information and their payment card data (PCD), because Numrich did not adequately protect the information in its systems.
Numrich Gun Parts Data Breach Complaint