Fashion retailer Zoetop to pay $1.9M over data breach response
By 
Adrianne Appel2022-10-17T17:37:00
Zoetop, parent company to online clothing retailers SHEIN and ROMWE, agreed to pay $1.9 million as part of a settlement with the New York Attorney General’s Office for failing to properly protect customer information compromised during a 2018 data breach.
Zoetop did not properly protect customer data before or after the breach and “downplayed the extent” of the incident, New York Attorney General Letitia James said in an Oct. 12 press release.
Zoetop didn’t know where on its system it stored customer credit card information, James alleged. It allowed some credit card transaction information to be stored in plain text, she said, and used an algorithm to protect customer passwords that was known to be weak.
Related articles
-
News BriefCFPB shutdown appears imminent, enforcement transferred to DOJ
The Consumer Financial Protection Bureau is reportedly transferring its enforcement caseload to the DOJ, one of multiple indicators telegraphing its eminent shutdown.
-
ArticleRussian web company that hosted LockBit ransomware sanctioned
Two Russian web-hosting services that provide cover for ransomware operators, including Lockbit, have been sanctioned by the U.S. Treasury’s OFAC and international partners.
-
ArticleNursing home chain and former CEO pay $146M each for federal health fraud
A New Jersey and Midwest nursing home chain, and its former chief executive, must pay more than $146 million each for extensive health care fraud for engaging in widespread fraud related to Medicare and Medicaid.
More from Regulatory Enforcement
-
News BriefDOJ secures $118 million penalty in FCPA violation case tied to Guatemalan telecom firm
The parent company of a telecom subsidiary in Guatemala agreed to pay $118.2 million to settle allegations of improper payments made to government officials, but the U.S. Department of Justice chose not to impose a compliance monitor to administer the firm’s compliance with the Foriegn Corrupt Practices Act (FCPA).
-
News BriefU.S. Treasury faces new pressure over unreleased Epstein bank records
The release of thousands of emails written by Jeffrey Epstein has sparked a political storm. One Democratic Senator is ramping up pressure for the U.S. Treasury to also disclose the deceased financier’s bank records.
-
ArticleHorizon Blue Cross Blue Shield pays $100M to settle state false claims allegations
Horizon Blue Cross Blue Shield of New Jersey has agreed to pay $100 million to settle allegations that its 2020 contract with the state was fraudulent, according the state’s Attorney General.