Advance Auto Parts Data Breach Puts 1+ million Customers and Employees at Risk of Identity Theft Featured
Advance Auto Parts data breach impacts identities of customers and employees including job applicants at the major automotive parts supplier.
Several class action lawsuits were recently filed alleging Advance Auto Parts (AAP) negligently failed to protect employees sensitive data from know security risks through standard cybersecurity practices.
What Happened?
According to AAP‘s most recent quarterly 8k filing with the Securities and Exchange Commission (SEC), on May 23, 2024, AAP identified unauthorized activity within a third-party cloud database environment containing Company data. AAP contacted law enforcement and launched an investigation with industry-leading experts.
On June 5, 2024, a criminal threat actor that goes by the name Sp1d3r offered what is alleged to be AAP data for sale on the dark web.
What Information Was Stolen?
Upon reviewing the information stolen, AAP said it believes the compromised information contains personal information belonging to current and former employees as well as job applicants but was tight lipped about the scope of breached information.
AAP’s assessment of the magnitude of the data breach being confined to current and former employees as well as job applicants is at odds with what hackers have posted on the dark web. According to what is posted, over 3 TB of data is for sale for $1.5 Million USD including a boatload of sensitive company, customer and employee data.
What is Advance Auto Parts Doing To Protect My Identity?
AAP says it is committed to sending data breach notifications to those affected and is offering free credit monitoring and identity restoration services as necessary. At this time it is unclear if this will be only for employees or for exposed customers as well.
What Can Hackers Do With My Information?
Stolen PII and PHI can be used to commit identity theft, open new credit accounts, make unauthorized purchases or obtain loans. Cyber-criminals have recently targeted America’s essential industries and in so doing have forced millions of Americans to face the fallout from these attacks.
Leaked or stolen data can be sold on the dark web forums and may be used for fraud and medical identity theft, a type of fraud, where threat actors use stolen information to submit forged claims to insurers.
Clients affected by the breach are exposed to a heightened and imminent risk of fraud and identity theft. They must now and in the future closely monitor their financial accounts to guard against identity theft and fraud.
If you receive a data breach notification from Advance Auto Parts, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options at no cost to you. For more information, please review these recommendations.
Protect Your Identity. Join the Advance Auto Parts Data Breach Class Action.
The lawsuit alleges that Advance Auto Parts breached its duties under common law and the Federal Trade Commission Act to implement reasonable security measures, comply with industry standards and federal data-security regulations, encrypt sensitive data, and provide adequate and timely notice of the breach.
If you receive a notification letter from Advance Auto Parts, you are at permanent risk of identity theft and the devastating financial and legal consequences that go along with it.
You may be eligible to participate in a class action lawsuit to recover compensation for loss of privacy, time spent dealing with the breach, out-of-pocket costs, and more.
The lawsuit looks to cover anyone in the USA whose private information was compromised by the breach announced by Advance Auto Parts.
Please complete the below form shown on this page and a data breach attorney will contact you. There is no cost to you.