Slim CD Data Breach Class Action: 1.7 Million Customers Affected

Case Overview: A class action lawsuit has been filed against Slim CD Inc., alleging that the company failed to protect customer data, leading to a data breach.

Consumers Affected: Individuals whose personal information was compromised in the Slim CD data breach.

Court: U.S. District Court for the Southern District of Florida

A Florida-based payment processing company, Slim CD Inc., is facing a class action lawsuit for allegedly failing to protect the personal information of 1.7 million people. 

The lawsuit claims the company was negligent in safeguarding sensitive data like names, addresses, credit card numbers, and Social Security numbers. The breach, which took place over nearly a year, potentially exposed millions to fraud and identity theft.

Slim CD Accused of Negligence, Putting Customers at Risk of Identity Theft

Lindley Murray, a Washington D.C. resident, filed the proposed class action lawsuit accusing the company of negligence and failing to take proper measures to protect consumers’ private information from cybercriminals. The lawsuit claims that because of Slim CD’s lax security, Murray’s data—along with millions of others—was compromised, leading to a risk of fraud, phishing, and other cyberattacks.

Since discovering the breach, Murray says he’s had to spend time and money on credit monitoring services, remove his data from online broker sites, and continually check his accounts for fraud. He has also suffered emotional and financial stress, the lawsuit states, and he now faces an increased risk from future cyberattacks. 

The complaint argues that Slim CD’s failure to protect its customers’ information has caused lasting harm, and the lawsuit is seeking monetary damages exceeding $5 million.

Data Breach Exposed Sensitive Information, Lawsuit Claims

According to the lawsuit, Slim CD announced on September 6 that an unauthorized party had accessed their systems between August 2023 and June 2024. This cyberattack “may have enabled” hackers to view and steal personal information, including credit card details and unencrypted Social Security numbers. 

Despite the breach affecting millions of people, Slim CD has yet to send formal notification letters to the impacted individuals or provide an explanation of the root cause of the breach, according to the lawsuit.

The complaint alleges that Slim CD did not take the necessary steps to secure its systems from known risks, which left sensitive data vulnerable to cyberattacks. The lawsuit further claims that Slim CD failed to follow state and federal requirements regarding data protection, including industry best practices for securing personal information.

Slim CD Failed to Implement Adequate Security Measures, Lawsuit Alleges

The lawsuit argues that Slim CD could have prevented the data breach if it had implemented adequate safeguards, including administrative, technical, and physical controls, as required by law. By not doing so, Slim CD allowed unauthorized parties to access sensitive customer information, putting millions at risk. The complaint also criticizes the company for not properly overseeing third-party vendors and ensuring they adhered to reasonable data protection standards.

The lawsuit states that Slim CD’s failure to identify potential risks associated with storing personal data, combined with its inability to prevent the breach, directly contributed to the data theft. Had Slim CD followed the necessary protocols and best practices, Murray argues, this breach could have been avoided.

Companies Face Growing Number of Lawsuits Over Data Breaches

Slim CD is the latest in a growing list of companies facing lawsuits for failing to protect consumer data. 

Similar class actions have been filed against companies like Avis Rent A Car, KemperSports, and Hospital Sisters Health System, all of which experienced data breaches that exposed sensitive information. In the case of Avis, plaintiffs are seeking damages for negligence and unjust enrichment after customer data was compromised.

In his lawsuit against Slim CD, Murray wants to represent consumers from across the U.S. in his claims of negligence, unjust enrichment, invasion of privacy and violations of Florida business laws. He is seeking damages, injunctive relief, fees, and costs, as well as lifetime credit monitoring.

Case Details

• Lawsuit: Murray v. Slim CD Inc.
• Case Number: 0:24-cv-61880
• Court: U.S. District Court for the Southern District of Florida

Plaintiffs' Attorneys

• Paul J. Doolittle, Esq. (Poulin Willey Anastopoulo LLC)
• D. Nicole Guntner and Bryan F. Aylstock (Aylstock, Witkin, Kreis & Overholtz PLLC)

Have you been affected by the Slim CD data breach? Share your experiences and concerns in the comments below.