CarGurus Inc. was hit with a flurry of lawsuits over a February data breach that allegedly exposed the data of around 12.5 million people.
The breach appears to be the latest from the ShinyHunters cybercriminal group, which claimed responsibility in January for breaches against Panera Bread Co., Match Group Inc., and CarMax Auto Superstores Inc.
Nancy Infield alleged in the first-filed lawsuit that CarGurus breached its duties under common law, contract law, industry standards, and the Federal Trade Commission Act to implement reasonable and adequate data-security measures and provide timely and adequate notice of the incident.
Information exposed ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.