fbpx

ParkMobile Data Breach Exposes Customers’ PII Class Action

As data breaches multiply, companies are being asked to raise their standards for security and even to be responsible not only for their own security measures but for those of their vendors as well. The complaint for this class action alleges that ParkMobile, LLC did not adequately protect customers’ data because of “a cybersecurity incident related to a vulnerability in a third-party software vendor that ParkMobile uses.”

The class for this action is all individuals in the US whose PII was compromised in the ParkMobile data breach which took place around March 2021.

ParkMobile offers a mobile application related to parking services. It allows users to pay through their phones for parking at parking meters and garages, extend the meter time, and reserve spots for future use at concerts, sports events, airports, and campuses. It also provides information, such as on covered parking, charging for electric vehicles, onsite security, valet parking, and handicapped parking.

In order to make use of these services, users much create an account, providing ParkMobile with their personally identifiable information (PII), including their names, license plate numbers, addresses, e-mail addresses, and account passwords. They can also store as many as seven different methods of payment.

ParkMobile announced on March 26, 2021 that it “recently became aware of a cybersecurity incident linked to a vulnerability in a third-party software that we use.” The company also said that their “investigation indicates that no sensitive data or Payment Card Information, which we encrypt, was affected.”

An update the following month claimed that the company’s “investigation concluded that encrypted passwords, but not the encryption keys needed to read them, were accessed.” Also, the company noted that the information compromised included “basic user information” such as “license plate numbers and, if provided by the user, e[-]mail addresses and/or phone numbers” and, in some cases, addresses.

However, the complaint alleges that the “PII obtained from ParkMobile has already been listed for sale on a Russian crime forum for $125,000.”

The plaintiff in this case, Heriberto Travieso, was a victim of the data breach. The complaint claims he has had to spend time on dealing with the data breach, such as “changing passwords, freezing credit cards, and monitoring his various accounts[.]”

Even so, the complaint alleges, he “has experienced abnormal activity related to several of his accounts, including his credit card, PayPal, Venmo, e[-]mail, and Netflix accounts. In the last several weeks, unknown parties have accessed [Travieso’s] e[-]mail account and Netflix account.”

The complaint alleges, “The Data Breach was a direct and proximate result of ParkMobile’s failure to implement and follow basic security procedures.”

Article Type: Lawsuit
Topic: Privacy

Most Recent Case Event

ParkMobile Data Breach Exposes Customers’ PII Complaint

June 18, 2021

As data breaches multiply, companies are being asked to raise their standards for security and even to be responsible not only for their own security measures but for those of their vendors as well. The complaint for this class action alleges that ParkMobile, LLC did not adequately protect customers’ data because of “a cybersecurity incident related to a vulnerability in a third-party software vendor that ParkMobile uses.”

ParkMobile Data Breach Exposes Customers’ PII Complaint

Case Event History

ParkMobile Data Breach Exposes Customers’ PII Complaint

June 18, 2021

As data breaches multiply, companies are being asked to raise their standards for security and even to be responsible not only for their own security measures but for those of their vendors as well. The complaint for this class action alleges that ParkMobile, LLC did not adequately protect customers’ data because of “a cybersecurity incident related to a vulnerability in a third-party software vendor that ParkMobile uses.”

ParkMobile Data Breach Exposes Customers’ PII Complaint
Tags: Exposing Private Information, Exposure to cyber crime, Your Privacy