in Newswire Published on March 20, 2024

Mortgage Contracting Services to Blame for December 2023 Cyberattack, Class Action Alleges

by Kelsey McCroskey

View Comments

Gay v. Mortgage Contracting Services, LLC

Filed: March 14, 2024 § 4:24-cv-00217

Read Complaint

A class action claims negligent cybersecurity is to blame for a December 2023 data breach that compromised the personal information of MCS employees and customers.

Defendant(s)

Mortgage Contracting Services, LLC

Law(s)

State(s)

Texas

Categories

Privacy Data Breach

A proposed class action claims negligent cybersecurity is to blame for a December 2023 data breach that compromised the personal information of current and former Mortgage Contracting Services (MCS) employees and customers.

Want to stay in the loop on class actions that matter to you? Sign up for ClassAction.org’s free weekly newsletter here.

According to the 33-page amended complaint, an unauthorized third party gained access to certain MCS computer systems between December 9 and December 13, 2023. Per the suit, the cyberattack exposed the names and Social Security numbers of at least 1,143 individuals who had entrusted their private information to the Texas-based property services company.

Despite its duty to safeguard the personal data in its care, MCS failed to implement proper, up-to-date cybersecurity protocols to prevent unauthorized intrusion into its computer systems, the case alleges.

In addition, the company waited until late February 2024—months after the data breach purportedly occurred—to begin notifying victims about the incident, the complaint shares.

As the filing tells it, MCS’s delayed notification meant that impacted individuals were “vulnerable to identity theft without any warnings to monitor their financial accounts or credit reports to prevent unauthorized use of their [personally identifiable information].”

What’s more, MCS’s notice letter intentionally “obfuscated the nature of the breach” and the threat it posed by failing to explain how many individuals were affected, how the incident occurred and why the company had waited so long to notify victims, the suit contends.

The case charges that impacted individuals now face a lifelong risk of identity theft and fraud at the hands of data thieves, thanks to MCS’s alleged negligence.

The lawsuit looks to represent anyone in the United States whose personal information was accessed without authorization in the MCS data breach, including those who received notice of the incident.

Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s free weekly newsletter here.

Case Spotlight

Hair Relaxer Lawsuits

Women who developed ovarian or uterine cancer after using hair relaxers such as Dark & Lovely and Motions may now have an opportunity to take legal action.

Read more here: Hair Relaxer Cancer Lawsuits

How Do I Join a Class Action Lawsuit?

Did you know there's usually nothing you need to do to join, sign up for, or add your name to new class action lawsuits when they're initially filed?

Read more here: How Do I Join a Class Action Lawsuit?

ClassAction.org Newsletter

Stay Current

Sign Up For
Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This browser does not support PDFs. Please download the PDF to view it: Download PDF.
Open Document
Last Updated on March 20, 2024 — 9:16 AM

Kelsey McCroskey

kelsey@classaction.org

Kelsey works primarily on ClassAction.org’s newswire, reporting on cases as they happen.

About ClassAction.org

ClassAction.org is a group of online professionals (designers, developers and writers) with years of experience in the legal industry.

Learn More

Before commenting, please review our comment policy.