Financial technology firm Affirm Holdings Inc. failed to protect customers’ data from a May cyberattack against its banking partner, a putative class action said.
By failing to protect users’ personally identifiable information, Affirm committed negligence, negligence per se, and unjust enrichment, according to the complaint filed Wednesday in the US District for the Northern District of California.
Evolve Bank & Trust disclosed around June 25 that a cybercriminal group breached its systems the prior month and stole and exposed customers’ data on the dark web, including Affirm’s customers. Affirm informed customers on July 3 that personal identifying information like individual’s ...
Learn more about Bloomberg Law or Log In to keep reading:
Learn About Bloomberg Law
AI-powered legal analytics, workflow tools and premium legal & business news.
Already a subscriber?
Log in to keep reading or access research tools.