in Newswire Published on October 15, 2024

MoneyGram Data Breach Lawsuit Filed After Customer Info Stolen by Hackers

by Corrado Rizzi

View Comments

Reyes v. MoneyGram Payment Systems, Inc.

Filed: October 14, 2024 § 3:24-cv-02572

Read Complaint

MoneyGram Payment Systems faces a class action lawsuit in the wake of a reported 2024 data breach.

Defendant(s)

MoneyGram Payment Systems, Inc.

Law(s)

State(s)

Texas

Categories

Business/Finance Privacy Data Breach

MoneyGram Payment Systems faces a proposed class action lawsuit in the wake of a reported 2024 data breach in which a trove of sensitive customer information was stolen by cybercriminals.

Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s free weekly newsletter.

The 32-page MoneyGram data breach lawsuit says that the infiltration occurred between September 20 and September 22, 2024, though MoneyGram allegedly failed to detect the data breach until September 27. The filing states that although MoneyGram has not revealed the full scope of the data breach, it likely impacted thousands of customers given that the defendant is one of the largest money transfer services worldwide.

Related Reading: MoneyGram Data Breach Lawsuits – October 2024

The MoneyGram data breach appears to have occurred by way of a “social engineering attack” on the company’s IT helpdesk, whereby the perpetrators impersonated an employee to gain access to that person’s account, the lawsuit relays. The cybercriminals then used the access to remotely connect to MoneyGram’s information systems and target its Windows Active Directory systems directly, the suit states.

Information allegedly compromised in the MoneyGram cyberattack includes names, Social Security numbers, government IDs, transaction details, email and postal addresses, phone numbers, bank account specifics, MoneyGram Plus Rewards data and some criminal investigation information for a limited number of customers.

According to the suit, MoneyGram’s failure to catch the malicious activity until after it had concluded is evidence that the company “lacks the appropriate logging, monitoring, and alerting systems necessary to enable it to identify such attacks.”

“Indeed, Defendant did not initially recognize the cyberattack for what it was,” the case contends. “Rather, it believed it merely suffered a ‘network outage’ rather than a data breach.”

The case calls the 2024 MoneyGram data breach an “[i]mminently [f]oreseeable” risk to the company.

The MoneyGram data breach lawsuit looks to cover all United States residents whose personally identifiable information was compromised in the MoneyGram data breach and to whom the company sent a notification that they were affected by the incident.

Are you owed unclaimed settlement money? Check out our class action rebates page full of open class action settlements.

Case Spotlight

Hair Relaxer Lawsuits

Women who developed ovarian or uterine cancer after using hair relaxers such as Dark & Lovely and Motions may now have an opportunity to take legal action.

Read more here: Hair Relaxer Cancer Lawsuits

How Do I Join a Class Action Lawsuit?

Did you know there's usually nothing you need to do to join, sign up for, or add your name to new class action lawsuits when they're initially filed?

Read more here: How Do I Join a Class Action Lawsuit?

ClassAction.org Newsletter

Stay Current

Sign Up For
Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This browser does not support PDFs. Please download the PDF to view it: Download PDF.
Open Document
Last Updated on October 15, 2024 — 9:45 AM

Corrado Rizzi

corrado@classaction.org

Corrado Rizzi is the Senior Managing Editor of ClassAction.org.

About ClassAction.org

ClassAction.org is a group of online professionals (designers, developers and writers) with years of experience in the legal industry.

Learn More

Before commenting, please review our comment policy.