Cash App customers can claim compensation from a $15 million settlement due to alleged inadequate security measures leading to unauthorized access and transactions. Although Cash App denies wrongdoing, they agreed to the settlement to avoid litigation costs. Eligible users affected between August 23, 2018, and August 20, 2024, can claim up to $2,500 for losses and additional compensation for lost time. Claims must be submitted by November 18, 2024.
Cash App users have until next week to claim part of a $15 million settlement from a class action lawsuit against Cash App Investing and Block Inc. The lawsuit alleged negligence in handling unauthorized access to user accounts by a former employee. Eligible users, whose accounts were accessed without permission or experienced unauthorized transactions since August 23, 2018, can file claims for up to $2,500 by November 18, 2024. The settlement addresses data security incidents disclosed in 2022 and 2023.
Cash App users in New York who experienced unauthorized access to their accounts have until November 18, 2024, to file claims for compensation from a $15 million settlement. The settlement follows a class action lawsuit alleging Cash App failed to prevent unauthorized access and mishandled customer complaints after data breaches in 2021 and 2023. Eligible users can claim up to $2,500 for out-of-pocket losses and lost time, provided they submit necessary documentation.
Cash App users have until November 18, 2024, to claim part of a $15 million settlement from a class action lawsuit against Block Inc. and Cash App Investing. The lawsuit accused the companies of negligence after unauthorized access to user accounts in 2022 and 2023. Eligible users must have experienced unauthorized account access or fraudulent transactions between August 23, 2018, and August 20, 2024. Claimants can receive up to $2,500 for losses and $75 for lost time, with a final settlement approval hearing set for January 13, 2025.
A 26-year-old Canadian man, Alexander Moucka, has been arrested for allegedly stealing data from over 160 companies using Snowflake's cloud service and extorting them. Moucka, also known by hacker aliases such as Judische and Waifu, is linked to a cybercriminal group UNC5537, which has targeted major corporations like AT&T and Santander Bank. The group exploited weak security measures to access sensitive data, demanding ransoms to prevent data leaks. Moucka's arrest follows a series of high-profile breaches and extortion attempts, highlighting significant cybersecurity vulnerabilities.
Giant Eagle has notified customers of a data breach after discovering five credit card skimmers at various Ohio store locations, including two in Columbus. The skimmers, found between November 3 and 9, 2023, could have compromised the credit card information of customers who used the magnetic swipe on PIN pads. The company has since inspected all PIN pads, removed the skimmers, retrained staff, and advised potentially affected customers to monitor their accounts for fraud. The Better Business Bureau provides tips to avoid skimmer scams, and all relevant financial institutions have been alerted.
Nicholas Mui, a 22-year-old from Grand Haven, Michigan, faces nine felony charges for allegedly stealing Meijer mPerks points by selling compromised account credentials online. The thefts, which resulted in a corporate loss exceeding $1 million for Meijer, were not due to a direct hack of Meijer's platform but rather stemmed from a major data breach from the MyFitnessPal app. Mui's arrest followed a joint investigation by Meijer, the Michigan Attorney General's FORCE team, and the Michigan State Police. The victims have been reimbursed by Meijer for their lost points. Mui's next court appearance is scheduled for January 9.
LastPass is enforcing a new security measure requiring all users to have a master password of at least 12 characters. This change, effective from April 2023 for new accounts and password resets, now extends to all accounts to enhance security following two breaches in 2022. The company will also check new or updated master passwords against a database of credentials leaked on the dark web. Additionally, LastPass faced issues with a forced multi-factor authentication re-enrollment process in May 2023. These security updates come after LastPass experienced significant breaches in 2022, which led to the theft of source code and customer vault data, and were later linked to a cryptocurrency theft totaling $4.4 million. LastPass is widely used, with over 33 million individual users and 100,000 businesses.
