American Standard mails data breach notices in wake of January attack

American Standard data breach overview:

• Who: American Standard sent data breach notices in April to consumers who may have been affected by a January data breach. 
• Why: Cybercriminal group RansomHub has reportedly taken responsibility for the data breach incident. 
• Where: The data breach affects certain consumers nationwide. 

American Standard, a kitchen and bathroom plumbing products brand, mailed a letter in April to consumers who may have been affected by a January data breach. 

The New Jersey-based company disclosed the data breach earlier this year and has now sent a notice of the incident to those potentially affected. American Standard is also offering access to free credit report and monitoring services. 

Cybercriminal group RansomHub took responsibility for the data breach while claiming to have stolen 400 gigabytes of information from American Standard’s network servers, as reported by Cybernews. 

No sample data was reportedly provided by RansomHub, which posted about the incident on its dark leak blog at the time, but the group did publish a countdown clock for a deadline to negotiate a ransom in return for the data. 

It is unclear at the time of this writing if American Standard paid a ransom to RansomHub in the wake of the data breach. 

American Standard says breach victims can place security freeze on credit reports

In a sample letter provided to potentially affected consumers in Massachusetts, American Standard advised the recipients to place a security freeze on their credit reports. 

The company also included instructions on how to place and remove a security freeze to help consumers protect their credit in the wake of the data breach.

American Standard produces the brands Crane, Eljer, Fiat, Sanymetal and Showerite. The company was founded in 1929 and operates in 50 countries with around 5,000 employees, according to its website. 

According to Cybernews, the data breach was the year’s first cyberattack involving a high-profile company and RansomHub, a group believed to be of Russian origin that typically avoids targets in Russia, former Soviet states, Cuba, North Korea and China.

Consumers filed a trio of class action lawsuits against Hertz and its cloud-based management host Cleo in April over claims the companies failed to protect customer data during an attack against Cleo’s network from October to December 2024. 

Were you affected by the American Standard data breach? Let us know in the comments.

Read About More Class Action Lawsuits & Class Action Settlements:

• Huggies baby wipes class action lawsuit filed over allegedly harmful ingredients
• Fiverr class action alleges freelancing platform conceals added ‘junk fees’ until checkout
• Billie deodorant caused chemical burns, class action lawsuit alleges
• Mint Mobile users claim calls were secretly recorded, file class action lawsuit