Ally Breach May Have Leaked Consumer Data of Billions, Suit Says

The “unreasonable and inadequate” cybersecurity practices of Ally Financial Inc. and its online Ally Bank subsidiary left the personal data of “potentially billions” of its customers exposed to theft in an April data breach,a proposed class action said.

The financial holding company’s platform offering banking, home and auto loans, and other services, failed to encrypt or redact the personally identifying information of its customers, according to a complaint filed on Sept. 7 in the US District Court for the Western District of North Carolina. It also failed to use widely available software able to detect and prevent a cyberattack or ...