The owner of 121 Arby’s restaurants in the Midwest faces a proposed class action alleging negligence and the invasion of privacy of employees whose data was exposed in a March breach.
Cybercriminals were able to breach the Arby’s systems because of Georgia-based owner DRM Inc.'s failures to adequately train employees on cybersecurity, maintain security safeguards, and monitor how its agents, contractors, vendors, and suppliers handled personally identifiable information, the suit alleges.
These failings made the company “an easy target for cybercriminals,” according to the complaint filed Wednesday in the US District Court for the Northern District of Georgia.
An investigation ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.