Weee! Grocery Store Chain Responsible for Data Breach Affecting 1.1M, Class Action Claims
Jia v. Weee!, Inc.
Filed: May 11, 2023 ◆§ 4:23-cv-02314-DMR
A class action lawsuit claims Weee!, a major online Asian and Hispanic grocery delivery startup, failed to protect the personal information of at least 1.1 million customers during a February 2023 data breach.
California Unfair Competition Law California Consumer Privacy Act California Consumer Records Act
California
A proposed class action lawsuit claims Weee!, a major online Asian and Hispanic grocery delivery startup, failed to protect the personal information of at least 1.1 million customers during a February 2023 data breach.
Want to stay in the loop on class actions that matter to you? Sign up for ClassAction.org’s free weekly newsletter here.
The 33-page lawsuit says that on February 6 of this year, a malicious third party called IntelBroker began posting the private data of Weee! consumers on Breached, a notorious hacking and data leak forum wherein cybercriminals sell stolen information. The suit relays that the data compromised in the cyberattack included the full names of customers who placed orders with Weee! after July 12, 2021, as well as their email addresses, phone numbers, order details, the type of device used to make the order and more.
The case argues that Weee!, in an effort to “save money” and “cut[] corners,” failed to implement proper data security protocols to safeguard the personal information stored in its systems. The complaint also takes issue with the company’s failure to detect unauthorized access to its network and take action to “investigate the red flags that should have warned [Weee!] that their systems were not secure.”
In addition, Weee! not only failed to provide timely notice about the incident to impacted individuals but neglected to meaningfully inform victims of the full scope of the ransomware attack, the lawsuit charges.
According to the suit, the defendant was well aware of its duty to protect consumers’ personal information. However, the case contends that “despite understanding the consequences of inadequate data security, [Weee!] failed to comply with industry standard data security requirements.”
The plaintiff, a California resident, was among those affected by the breach, as she had placed orders with Weee! after July 12, 2021, the complaint says. The woman, like other victims, is now at a substantial risk of identity theft, fraud and other illegal activity as a result of the company’s “deceptive and unconscionable conduct,” the filing claims.
The lawsuit looks to represent anyone in the United States whose personal information was compromised in the Weee! data breach.
Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s free weekly newsletter here.
Hair Relaxer Lawsuits
Women who developed ovarian or uterine cancer after using hair relaxers such as Dark & Lovely and Motions may now have an opportunity to take legal action.
Read more here: Hair Relaxer Cancer Lawsuits
How Do I Join a Class Action Lawsuit?
Did you know there's usually nothing you need to do to join, sign up for, or add your name to new class action lawsuits when they're initially filed?
Read more here: How Do I Join a Class Action Lawsuit?
Stay Current
Sign Up For
Our Newsletter
New cases and investigations, settlement deadlines, and news straight to your inbox.
Before commenting, please review our comment policy.