ASM Global Parent Inc. experienced a **cyberattack** detected on **October 12, 2023**, exposing sensitive personal and health data of customers. The compromised information included **names, Social Security numbers, driver’s license/state ID numbers, passport numbers, credit/debit card details, and medical records** (diagnoses and treatment details). The breach led to a **$1.4 million class-action settlement**, with affected individuals eligible for reimbursement of up to **$10,000** for documented losses (e.g., identity theft, fraud) and pro rata cash payments. The lawsuit alleged **negligence in data protection**, though ASM denied wrongdoing. The incident highlights severe risks to **financial, reputational, and personal privacy**, with potential long-term consequences for victims, including fraud and medical identity theft. The settlement fund covers legal fees, administrative costs, and compensation for claimants, with payouts contingent on validation of losses.
Source: https://www.claimdepot.com/settlements/asm-global-data-settlement
ASM Global cybersecurity rating report: https://www.rankiteo.com/company/asmglobal
"id": "ASM5902459111525",
"linkid": "asmglobal",
"type": "Cyber Attack",
"date": "10/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Residents of the United States '
'whose personal information was '
'compromised in the incident '
'detected on Oct. 12, 2023',
'location': 'United States',
'name': 'ASM Global Parent Inc.',
'type': 'Corporation'}],
'customer_advisories': 'Eligible class members can submit claims for '
'out-of-pocket expenses (up to $10,000) or pro rata '
'cash payments. Deadline: Jan. 2, 2026.',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': ['Names',
'Social Security '
'numbers',
'Driver’s '
'license/state ID '
'numbers',
'Passport numbers',
'Credit/debit card '
'details',
'Medical '
'diagnosis/treatment '
'details'],
'sensitivity_of_data': 'High (includes SSNs, medical data, '
'and financial information)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)',
'Payment Card Information '
'(PCI)']},
'date_detected': '2023-10-12',
'description': 'ASM Global Parent Inc. agreed to pay $1.4 million to resolve '
'a class action lawsuit alleging it failed to adequately '
'protect sensitive personal and health information, which '
'threat actors accessed during a cyberattack. The exposed '
'information included names, Social Security numbers, driver’s '
'license or state identification numbers, passport numbers, '
'credit or debit card details, and, in some cases, medical '
'diagnosis and treatment details.',
'impact': {'brand_reputation_impact': 'Class action lawsuit and settlement',
'data_compromised': ['Names',
'Social Security numbers',
'Driver’s license or state identification '
'numbers',
'Passport numbers',
'Credit or debit card details',
'Medical diagnosis and treatment details (in '
'some cases)'],
'financial_loss': {'out_of_pocket_expense_reimbursement': 'Up to '
'$10,000 '
'per '
'claimant',
'pro_rata_cash_payment': 'Remainder of fund '
'after expenses '
'(California residents '
'receive 2 shares)',
'settlement_fund': '$1.4M'},
'identity_theft_risk': 'High (due to exposure of SSNs, driver’s '
'license numbers, and financial data)',
'legal_liabilities': "$1.4M settlement fund (including attorneys' "
'fees, administration costs, and class member '
'payments)',
'payment_information_risk': 'High (credit/debit card details '
'exposed)'},
'investigation_status': 'Settled (class action lawsuit resolved with $1.4M '
'fund)',
'post_incident_analysis': {'root_causes': 'Alleged failure to adequately '
'protect personal and health '
'information (specific technical '
'root causes not disclosed).'},
'references': [{'source': 'Class Action Settlement Notice (ASM Global Parent '
'Inc. Data Security Incident Litigation)'},
{'source': 'Settlement Administrator Contact: 844-496-1268'},
{'source': 'Mailing Address for Claims: ASM Global Parent Inc. '
'Data Security Incident Litigation, c/o Settlement '
'Administrator, P.O. Box 25226, Santa Ana, CA '
'92799'}],
'regulatory_compliance': {'legal_actions': 'Class action lawsuit settled for '
'$1.4M'},
'response': {'communication_strategy': 'Notification letters sent to affected '
'individuals; settlement claims '
'process established (online/mail).'},
'stakeholder_advisories': 'Notification letters sent to affected U.S. '
'residents; claim submission instructions provided '
'(online/mail).',
'title': 'ASM Global Parent $1.4M Data Breach Class Action Settlement',
'type': 'Data Breach'}