Massachusetts Attorney General Maura Healey became the first state attorney general to sue Equifax in regard to the recent massive data breach. Specifically, the lawsuit accuses Equifax of not properly updating its Apache Struts software with security patches for vulnerabilities that were exploited by the hackers although the patches were available months before the data breach. The lawsuit also accuses Equifax with a failure to promptly notify victims of the data breach in a timely fashion and failing to encrypt data.
The lawsuit seeks civil penalties and other financial penalties. I expect numerous other state attorneys general to also sue Equifax in the days ahead.
I will keep you informed as to developments in this case as well as the multiple class actions that have been filed privately against Equifax in regard to the data breach and let you know what you may need to do to obtain compensation related to the data breach. In the meantime, if you have not already done so you should freeze your credit at each of the three credit reporting agencies and sign up for Equifax’s free identity protection services which are being offered for one year.