Industry - Lawsuit
Executive Summary
Crimson Wine Group experienced a data breach between June 26-30, 2024, that exposed sensitive information of 26,238 individuals, including Social Security numbers, driver's license numbers, financial account details, and medical records. The company discovered the unauthorized access on July 15, 2024, and is providing affected individuals with one year of complimentary credit monitoring and identity restoration services. The breach poses risks of identity theft and financial fraud due to the ...
What Happened
Crimson Wine Group detected unauthorized access to its systems on July 15, 2024, following a breach that occurred between June 26 and June 30, 2024. The incident exposed personal information of 26,238 individuals across the United States, including highly sensitive data such as Social Security numbers, driver's license numbers, financial account information, payment card details, and medical records. The company notified affected consumers beginning August 19, 2024, and disclosed the breach to state attorneys general in Maine, Massachusetts, and Texas in December 2024.
Who Is Affected
A total of 26,238 individuals across the United States are affected, including 1,213 people in Texas, 212 in Massachusetts, and 21 in Maine. The breach impacts anyone whose name, address, Social Security number, government-issued ID numbers, financial account information, payment card data, medical records, or date of birth was stored in the compromised systems during the incident window.
Why It Matters
This breach is classified as severe due to the breadth of highly sensitive information exposed, creating substantial risks for identity theft, financial fraud, and medical identity fraud. The combination of Social Security numbers, financial data, and medical records in a single incident provides malicious actors with comprehensive personal profiles that can be exploited across multiple fraud vectors. The incident underscores ongoing vulnerabilities in how companies handle and protect consumer data, particularly in industries that may not be perceived as primary targets for cyberattacks.
What You Should Do
Affected individuals should immediately enroll in the one year of complimentary credit monitoring and identity restoration services offered by Crimson Wine Group through IDX. Place fraud alerts or credit freezes on credit files with the three major credit bureaus (Equifax, Experian, and TransUnion) to prevent unauthorized account openings. Monitor all financial account statements and credit reports regularly for suspicious activity, and report any unauthorized transactions to financial institutions and law enforcement immediately.
Summary generated from verified sources and reviewed before publication. How we summarize.
Sources
- Flo Health App $59.5M Privacy Class Action Settlement - Claim Depot
- Crimson Wine Group $637K Data Breach Class Action Settlement - Claim Depot
- FMC Services Agrees to $2.15M Settlement to End Data Breach Lawsuit - The HIPAA Journal
- Madison Square Garden Hit With Class Action Lawsuit Over Apparent Data Breach - Front Office Sports