- The Prosecutor General of New York filed a complaint against Allstate for two data violations
- The trial indicates that the company has not informed customers and the government of attacks
- Allstate denied any reprehensible act, saying that he was intended to properly to the problem
The American insurance giant Allstate was struck by a legal action for having allegedly lost the data of sensitive customers and not informing the victims of what had happened.
The state of New York continued the National General Unit of Allstate, the Attorney General Letitia James depositing the trial before a state court of Manhattan, claiming that the lax security practices of the company led to two data violations, one in 2020 and one in 2021, which were not even reported until the prosecution. The first violation, which occurred between August and November 2020, apparently affected 12,000 people (9,100 New Yorkers). The national general did not spot the attack for two months and never informed affected customers or the attack agencies.
The second attack, which occurred in February 2021, affected 187,000 additional customers (155,000 New Yorkers) and occurred after Allstate acquired the National General in January 2021 for around $ 4 billion.
Violating the law on hacks of arrest
These two attacks, and the way ALLSTATE (did not succeed) addressed them, violated state hacks and improves the electronic data security law, James said. In addition, the company has violated the laws of consumer protection of the State, by deceiving its customers on its data security practices.
Now James are looking for civilian files of $ 5,000 per violation, more remedies, added PK Press Club.
“The weakness of National General cybersecurity has embarked on New York’s personal flights, not once but twice,” said James. “It is crucial that companies take cybersecurity seriously to protect consumers from fraud and identity theft.”
In his statement, Allstate denied all of the reprehensible acts and claimed to have addressed the incidents in a timely and appropriate manner.
“We resolved this problem years ago, quickly securing our systems after finding vulnerabilities in online quotation tools that could have exposed driving license numbers,” he said. “We quickly informed the regulators, contacted potentially assigned consumers and offered free credit monitoring as a precaution.”
Via PK Press Club
