Anyone who received a letter indicating that their information may have been exposed in a March 2023 data breach involving global law firm Orrick, Herrington & Sutcliffe, LLP. These letters were reportedly sent out on or around June 30, 2023.
What’s Going On?
Attorneys working with ClassAction.org are investigating whether Orrick, Herrington & Sutcliffe, LLP took proper care to protect consumer information and, if not, whether a class action lawsuit can be filed over the data breach.
How Could a Class Action Help?
A class action lawsuit could help compensate victims for any harm they’ve experienced as a result of the data breach, such as the cost of identity theft protection services and time lost responding to the incident. It could also force the law firm to improve its data security practices.
Attorneys working with ClassAction.org would like to speak to anyone who received a letter regarding a data breach involving global law firm Orrick, Herrington & Sutcliffe, LLP.
The breach reportedly exposed highly sensitive data, including birthdates and Social Security numbers, of tens of thousands who were enrolled in a certain vision benefits plan that the firm provided services to.
On March 13, 2023, Orrick, Herrington & Sutcliffe, LLP discovered that an unauthorized third party had gained remote access to a portion of the firm’s network, including a file share used to store certain client files.
Upon investigation, it was discovered that the bad actor had obtained files containing the personal information of participants of CHI Vision Plan. The vision benefits plan had previously retained Orrick as legal counsel in relation to a 2020 security event, which is why the law firm had this information in the first place, the data breach notice explains.