Epik Data Breach – Class Action Investigation

Chimicles Schwartz Kriner & Donaldson Smith is investigating a potential class action lawsuit related to reports that the domain registrar and web hosting company, Epik, was the victim of a recent data breach involving the personal data of 15 million Epik customers and non-customers.  In an email that Epik sent to its users notifying them of the breach, it reported that the hackers obtained “payment information including credit card numbers, registered names, usernames, emails, and passwords.” As such, Epik has instructed its users to “contact any credit card companies that [they] used to transact with Epik and notify them of a potential data compromise to discuss your options with them directly.”

The California Consumer Privacy Act of 2018 (“CCPA”) requires businesses to implement and maintain reasonable security procedures and practices to protect consumers’ personal information, and is violated any time a data breach reveals a consumer’s “[a]ccount number or credit or debit card number, in combination with any required security code, access code, or password that would permit access to an individual’s financial account.” Civ. Code § 1798.150(a)(1); Civ. Code § 1798.81.5(d)(1)(A).

If you have been notified—or have reason to believe—that your personal information may have been compromised, please contact the attorney(s) listed below.

(*) Indicates required field: When communicating with us through this site or otherwise in connection with a matter for which we do not already represent you, your communication may not be treated as privileged or confidential, and does not create an attorney-client relationship between you and our Firm.

Attorneys for this case:

Benjamin F. Johns
Mark B. DeSanto
Samantha E. Holbrook