DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Class action lawsuit filed over Aetna hack (updated)

Posted on June 9, 2009 by Dissent

Courthouse News Service reports that a class action claim has been filed against insurance giant Aetna as a result of the recent security breach in which hackers gained access to personal information about 450,000 employees, former employees and potential employees. At the time, Aetna stated that the incident exposed the SSN of approximately 65,000 people.

The plaintiff is Corneilus Allison of Pennsylvania. Allison is a former employee of Aetna who had used the web site in January to apply for another position and was subsequently notified of the breach. Allison is represented by Sherrie Savett with Berger & Montague.

The lawsuit (pdf), which was filed in U.S. District Court for the Eastern District of Pennsylvania, alleges negligence, breach of implied contract, negligent misrepresentation, and invasion of privacy.

At the time of Aetna’s announcement of the breach, the only known misuse of the information appeared to be that some people received phishing attempts. It is not known at this time whether data were misused in any other way, and the claim does not include any information that would suggest that the plaintiff is aware of any ID theft or misuse other than the previously reported phishing attempts.

Previous class action lawsuits have generally not been successful, with courts dismissing suits against Wells Fargo, Acxiom, and Hannaford Bros. in the absence of showing of unreimbursed financial harm to plaintiffs.

Neither Allison’s attorney nor Aetna were available for comment on the lawsuit at the time of this publication.

Update: I received the following statement from Aetna spokesperson Cynthia
Michener:

Aetna did the right thing by proactively notifying people about this incident and offering free credit monitoring, even though our independent IT security consultant has not determined that any information was accessed beyond email addresses. It’s unfortunate that we’re being sued for acting with integrity and honesty.

Related posts:

  • Aetna, still looking for scapegoat in HIV disclosure fiasco, sues plaintiffs firms
  • Aetna Pays $1,000,000 to Settle Three HIPAA Breaches
  • Aetna first notifying 238 Virginia employees of BenefitMall breach that they’ve known about since December, 2018?
  • Aetna to offer wealth of health data online
Category: Breach IncidentsHackHealth DataU.S.

Post navigation

← UK: Nightwatchman left tax files centre open and unguarded while he sneaked off for a burger
IN: Pharmacy pays fine for jeopardizing patient information →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit
  • British national “IntelBroker” charged with causing $25 million in damages; U.S. seeks his extradition from France
  • France issues press statement about arrest of ShinyHunters members
  • Patients Allege Home Delivery Pharmacy Failed to Timely Notify Them of Data Breach

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions
  • NY Attorney General James Affirms Hospitals Must Provide Access to Emergency Abortion Care
  • How Internet of Things devices affect your privacy – even when they’re not yours

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.