A class action lawsuit has been filed against a company accused of failing to protect sensitive customer information, leading to a significant data breach. Sharon Blue, the plaintiff, filed the complaint on November 15, 2024, in the United States District Court for the Northern District of Illinois against Set Forth, Inc.
The case centers around allegations that Set Forth, Inc., which provides online account administration services for debt relief programs, did not adequately secure personally identifiable information (PII) of its clients' customers. This negligence allegedly resulted in a data breach where cybercriminals accessed and exfiltrated sensitive data such as full names, addresses, and Social Security numbers of approximately 1.5 million individuals. The breach has exposed these individuals to risks including identity theft and fraud.
Plaintiff Sharon Blue claims that Set Forth's failure to implement robust cybersecurity measures directly led to this breach. The lawsuit highlights that despite being aware of potential risks due to their business nature and handling of valuable PII, Set Forth did not take necessary precautions like encryption or adequate employee training. As a result, affected individuals have suffered various harms including invasion of privacy and increased risk of identity theft.
The lawsuit seeks several forms of relief from the court. It demands injunctive relief requiring Set Forth to improve its data security practices and ensure future protection of customer information. Additionally, it seeks monetary damages for the affected individuals to compensate for their losses and cover costs related to monitoring their credit and personal information.
Representing Sharon Blue are attorneys whose identities were not disclosed in the document. The case is overseen by judges from the Northern District of Illinois with Case ID: 1:24-cv-11792.