Two suspected class actions have been filed against Aon PLC alleging that the brokerage firm was hacked between December 2020 and February 2022 but failed to warn affected individuals for more than three months.
About 145,000 individuals were affected by the intrusion into Aon’s system, which Aon discovered on February 25, 2022, according to court documents.
The victims were not informed until May 27, 2022, according to the lawsuits. Information that you gained access to included social security numbers, driving license numbers and information on benefit registration.
In revelations to the US Securities and Exchange Commission on February 28, Aon said it was investigating a cyberattack against “a limited number”; of its systems. “The incident has not had a significant impact on the company’s operations,” Aon said in the report.
According to the lawsuit, the data breach message sent to the victims said that Aon reported the incident to law enforcement agencies, including the FBI. The Communication said that Aon had taken steps to prevent a similar incident in the future, including improving the security of its networks, systems and data, and that it would evaluate further measures that could be taken.
The lawsuits, both filed in the U.S. District Court in Chicago and assigned to separate judges, are Misty Williams et al. v. Aon PLCsubmitted in June 29 and Sharon Rushing et al. v. Aon PLCwhich was submitted last Friday.
The fees include, among other things, negligence, unfair enrichment, breach of implied contracts and invasion of privacy.
Aon did not immediately respond to a request for comment on the trial.