Carvin Softwarewhich specializes in providing digital services to recruitment and financial agencies, is facing a class action lawsuit after an alleged breach that may have affected hundreds of thousands of people.
Who supplies Carvin Software?
The software vendor, whose clients include Apple StaffingArastaff, Complete Labor, EmployUS and Personnel Services, said they discovered this violation in March.
“Carvin Software has identified unusual activity on certain systems within our computer network“, reads a letter of notification to potential victims. “We promptly isolated the affected systems and launched a thorough investigation into the nature and extent of the activity“.
Concluded on March 29, “the investigation determined that some files were copied from our network without authorization” between February 22nd and March 9th. These include names, social security numbers and sensitive financial information.
Such data is very valuable to enterprising cybercriminals, who can use it for crimes such as phishing (and maybe even some ransomware), credit card fraud and online embezzlement, resulting in often severe losses for the victims.
Although incorporated near Phoenix, Arizona, Carvin was required to report the incident on May 19 to the Attorney General’s Office in Maine, which imposes stringent cybersecurity notification requirements for any attack involving its residents.
While only 5,679 state residents were affected, the total number of fatalities nationwide or even globally is 356,871.
Despite this frank disclosure and notification to federal authorities, things do not appear to be looking good for the software vendor, which now faces allegations from some 187,000 plaintiffs in the United States who have filed a class-action lawsuit against it.
The lawsuit will be pursued by the Lyon law firm, which released a statement on May 9 saying it was “actively involved in personal privacy class-action lawsuits and data theft and currently investigating Carvin Software’s data breach allegations for plaintiffs across the country“.
According to the investigations of Cybernewscurrently the site is not available in any way to access the official site of Carvin software.
Actually trying, even through VPNs, there is no way to access it.
#Carvin #Software #company #investigation #data #breach