SRP Federal Credit Union was hit with a proposed class action saying it failed to take reasonable steps to protect customers’ personal information from a fall ransomware attack and delayed notifying them, allowing cybercriminals use of it without their knowledge
SRP’s encryption of data, cybersecurity practices, and employee training were all inadequate to protect the names, Social Security numbers, and other sensitive information of 240,000 people stolen by an unauthorized third party, according to the complaint filed Dec. 20 in the US District Court for the District of South Carolina.
The credit union, which is primarily based in South Carolina ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.