Staples Sued in Class-Action Lawsuit Over Data Breach from Ransomware Attack.

toner · 2026-03-25T11:31:17-04:00

Staples Inc. is facing a federal lawsuit after a ransomware attack by the group CoinbaseCartel exposed sensitive personal data, including names, addresses, birthdates, and Social Security numbers. The suit, filed on March 19, 2026, in the U.S. District Court for the District of Massachusetts, alleges that Staples failed to adequately protect personally identifiable information (PII) it collected. Former employee Steve Sellin claims the company was negligent in implementing proper cybersecurity measures, such as data encryption and multifactor authentication. The ransomware group, which publicly posted an extortion notice on March 11, demands ransom negotiations, threatening to leak over two terabytes of stolen data. Sellin, represented by Siri & Glimstad LLP and Kopelowitz Ostrow PA, seeks to represent a nationwide class of affected individuals, demanding damages and changes to Staples' data security practices. The lawsuit accuses Staples of neglecting its duty to notify victims and protect against foreseeable cyber threats, with claims for negligence and unjust enrichment.

Tonernews.com, March 25, 2026. USA

This topic is empty.

Viewing 1 post (of 1 total)

Author

Posts
#769224

toner
Keymaster

Staples Inc. is facing a federal lawsuit after a ransomware attack by the group CoinbaseCartel exposed sensitive personal data, including names, addresses, birthdates, and Social Security numbers. The suit, filed on March 19, 2026, in the U.S. District Court for the District of Massachusetts, alleges that Staples failed to adequately protect personally identifiable information (PII) it collected. Former employee Steve Sellin claims the company was negligent in implementing proper cybersecurity measures, such as data encryption and multifactor authentication. The ransomware group, which publicly posted an extortion notice on March 11, demands ransom negotiations, threatening to leak over two terabytes of stolen data. Sellin, represented by Siri & Glimstad LLP and Kopelowitz Ostrow PA, seeks to represent a nationwide class of affected individuals, demanding damages and changes to Staples’ data security practices. The lawsuit accuses Staples of neglecting its duty to notify victims and protect against foreseeable cyber threats, with claims for negligence and unjust enrichment.
Author

March 25, 2026 at 11:31 AM

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty, or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action based on the content on our site.