In 2019, the hacker was able to gain access to more than 100 million Capital One customer accounts and credit card applications, compromising the personal information of thousands of people in the United States.
Now, those affected by the breach have just weeks to claim their share of the $190 million settlement reached in the class-action lawsuit.
As part of the lawsuit, the plaintiffs allege that Capital One’s cloud computing system, hosted by Amazon, lacked adequate protections to stop hackers. Capital One and Amazon are listed as defendants in the lawsuit, and deny wrongdoing and “that the information accessed by the attacker has been made public or distributed by the attacker,” it said. Website made for settlement.
Capital One agreed to a $190 million settlement in December, and a US federal court preliminarily approved it in February.
Originally, people who could qualify for the settlement had until August 22 to file a claim. The deadline has now been extended to Sept. 30. CNET reports.
What happened in the breach?
While hackers gained access to the account in March 2019, the breach was not made public until four months later in July.
In the same month, former Seattle tech worker Paige A. Thompson was arrested after Capital One informed the FBI of her “hacking activities”. Federal authorities discovered Thompson was able to use a tool he created to scan Amazon Web Services accounts looking for misconfigured accounts.
He then used those accounts to hack and download data from more than two dozen entities, including Capital One. US Department of Justice accused him from posting about his theft on the GitHub sharing site.
Earlier this year, Thompson was convict of wire fraud and computer intrusions. She is scheduled to be sentenced in September.
Capital One says it has since addressed the flaw in its system PUKas part of the settlement, to “take, pay, implement, and maintain an extensive Business Practices Commitment related to information security for a period of at least two (2) years.”
Are you eligible to pay in settlement?
Roughly 98 million Americans are eligible to pay cash at checkout, according to Capital One. The bank said it has sent notices to people who are “likely members of the Settlement Class.” You can also call 1-855-604-1811 to confirm your eligibility.
Anyone who has opted out of the settlement is not eligible to receive payment.
How to file a claim
If you’re an eligible class member, Capital One says you can file a claim to be reimbursed up to $25,000 for lost time (up to 15 hours at a rate of at least $25 an hour) and out-of-pocket costs related to the breach. that. This includes the cost of fraud, the money you spent to prevent identity theft, and costs to address identity theft, fraud or falsified tax returns.
In addition, you can submit a claim to register for at least three years of Identity Defense Services Pango Group without charge.
A claim must be filed online or sent by September 30, 2022. You will need the Unique ID and PIN included in the Capital One notification sent via mail or email. If you have not received a notification, or you misplaced it, you can call a Settlement Administrator at 1-855-604-1811 for help.
According to Capital One, if you are requesting reimbursement for out-of-pocket losses and/or lost time, you must provide additional detailed information to qualify.
Since final approval of the settlement is still pending – a hearing is scheduled for September 8 – it is unclear when the payments will be delivered. If the settlement receives final approval, payments may be available thereafter.