Findlay Automotive Group, which operates in Nevada, Utah, Arizona, Washington, and Idaho, recently identified a cybersecurity issue affecting its IT systems. Now customers of Findlay Automotive are suing the company for damages. Owners of vehicles purchased from a Findlay dealership, filed the class action lawsuit in Clark County District Court the same day Findlay, released a statement it was investigating a “cybersecurity issue” and that its sales and service operations would be restricted.

According to the lawsuit, the plaintiffs allege that Findlay did not safeguard customers’ sensitive information in its computer system making it vulnerable to cyberattacks. The sensitive information was listed as names, addresses, driver’s licenses, social security numbers, and financial and credit information.

The lawsuit alleges Findlay employees received “ransom notes” on their computers from ransomware from the “notorious cybercriminal group ‘Scattered Spider,’” which is known to target large companies and engage in extortion. The plaintiffs seek damages, restitution, and injunctive relief because they have “suffered and will continue to suffer losses,” the lawsuit stated. Read more about this story on our LinkedIn page