Header graphic for print
Class Action Blog Tp provide current legal information relating to class action lawsuits, including consumer fraud, consumer protection, securities and antitrust class actions

MDPCE Files Suit Against Zappos For Data Security Breach

On January 24, on behalf of over 24 million customers of the shoe and clothing store Zappos, Meiselman, Packman, Carton & Eberz P.C. filed suit in federal court against Amazon, the corporate parent of Zappos. Zappos recently put its customers at risk by negligently allowing a major security breach. As a result, cyber-criminals have obtained the following information for up to 24 million Zappos customers: name, e-mail address, billing and shipping addresses, phone number and the last four digits of credit cards. Zappos was so unprepared for the breach that, instead of living up to its responsibilities helping the victims, Zappos shut down its customer service phone lines. Even worse, some criminals appear to have used this breach to steal directly from Zappos customers and to commit identity theft.

Identity theft is a multi-billion dollar problem and, too often, identity theft is caused by the negligence of giant corporations. To help remedy this problem, Meiselman, Packman, Carton & Eberz, P.C. has previously brought lawsuits on behalf of identity theft victims in the TRICARE/SAIC and Sutter Health data breaches. These lawsuits will obtain relief for identity theft victims and will ensure that the corporations responsible for the breaches improve their security. We look forward to obtaining relief for the Zappos victims. If you are a Zappos customer and you believe your rights may have been violated, please contact us immediately to discuss your legal options. 

  • https://www.unibulmerchantservices.com Jay Gould

    The Zappos hackers seem to have accessed some of the information stored in retailer’s customer profiles. We don’t know whether or not the criminals have been able to actually access the customers’ accounts, as we don’t know if they could have retrieved the passwords. Yet, even if they did, that wouldn’t have done them much good. What could have happened? Let’s say that they attempted to place an order. Well, even if it did go through, which is unlikely, it would’ve been disputed by the cardholder who would have been reimbursed for any possible losses. Aside from that, any card data that may have been stored in a hacked profile would have been perfectly unusable, because it only shows the last 4 digits of the account number.
    The bottom line is that, as the data breach was immediately discovered and the customer passwords reset, the hackers would have been left with such information that they could have found on Yellow Pages, with much less trouble and for free. For a more detailed analysis: http://blog.unibulmerchantservices.com/the-zappos-data-breach-10-days-on-the-lessons-continue.