Unum Group Facing Class Action Suit Over Fall 2021 Data Breach

New to ClassAction.org? Read our Newswire Disclaimer

Insurance services provider Unum Group faces a proposed class action over a more than two-week data breach last fall.

The 32-page case alleges Unum Group failed to properly secure and safeguard the sensitive personal and financial information stored within its network. According to the lawsuit, the “massive and preventable” ransomware attack occurred between roughly October 28 and November 15, 2021, and saw cybercriminals infiltrate Unum’s “inadequately protected” network servers. 

Per the lawsuit, the data compromised in the incident was not maintained “in a manner consistent with industry and other relevant standards.” 

The complaint claims that although Unum Group says it detected unusual activity on its network as early as November 23, the company did not immediately report the incident to proposed class members, who the suit relays had no idea about the cyberattack until they received notice from the defendant in late January 2022. 

As the suit tells it, data breach victims remain to this day “in the dark” with regard to exactly which information was stolen, the particular kind of malware used and what steps Unum Group is taking, if any, to secure their data going forward. 

“Representative Plaintiff and Class Members are left to speculate as to the full impact of the Data Breach and how exactly Defendant intended to enhance its information security systems and monitoring capabilities so as to prevent further breaches,” the filing reads. 

According to the complaint, information that was accessed by the perpetrator(s) includes, but is not limited to, full names, addresses and Social Security numbers. 

Unum Group, the case argues, should have been on notice and aware of the potential for a data breach given the prevalence of recent high-profile cyberattacks, and thus prepared for “such an imminent attack.” This is especially true given the company boasts a major online presence and derives much of its revenue from online sales, the suit adds. 

The lawsuit looks to cover all individuals in the United States whose personal and/or financial information was exposed to unauthorized third parties as a result of the Unum Group data breach that occurred between October 28 and November 15, 2021. 

Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s free weekly newsletter here.