Cricket Wireless data breach class action overview:
- Who: Plaintiff Alexis Morgan, a Cricket Wireless customer, is suing the telecommunications company.
- Why: Morgan alleges the company was negligent with customer data and allowed it to be exposed in a data breach.
- Where: The Cricket Wireless data breach class action was filed in a Georgia federal court.
Cricket Wireless has been hit with a class action lawsuit after a major data breach that exposed the information of 10 million customers.
Plaintiff Alexis Morgan filed the class action lawsuit against Cricket Wireless LLC on July 23 in a Georgia federal court, alleging negligence, and that the company failed to secure sensitive personal information of its customers, resulting in a data breach.
“Defendant completely and utterly failed to protect its customers’ personal data and/or ensure that its third-party vendors protected customer data consistent with defendant’s privacy notice,” the Cricket Wireless data incident class action argues.
Sensitive data uploaded to Snowflake
Cricket Wireless, a major wireless service provider, collects extensive personal data from its subscribers, the lawsuit says.
According to Morgan, Cricket Wireless assured its customers that their data was secure through its privacy policy, which claimed that protecting customer information was “a priority.”
However, earlier this year, cybercriminals discovered that several major companies, including Cricket Wireless, had uploaded vast amounts of valuable and sensitive customer data to Snowflake, a third-party cloud platform, the lawsuit says.
The cybercriminals exploited Snowflake accounts that lacked proper authentication measures, gaining access to sensitive data, Morgan says. On July 22, 2024, Cricket Wireless announced that customer data had been illegally downloaded from its workspace on the Snowflake platform. The breach compromised records of calls and texts for nearly all Cricket Wireless customers between May 1, 2022, and Oct. 31, 2022, and Jan. 2, 2023. Cell site identification numbers and phone numbers were also exposed.
Cricket Wireless data breach affected 10 million customers, lawsuit claims
The lawsuit alleges that approximately 10 million customers were affected by the Cricket Wireless data incident.
Morgan says, despite learning of the breach in April 2024, Cricket Wireless did not notify its customers until three months later. The notification letter omitted critical details such as the root cause of the breach, the vulnerabilities exploited, and the remedial measures taken to prevent future breaches, she adds.
These details are still unclear, the lawsuit states, leaving affected customers uncertain about the security of their personal information.
“Defendant’s conduct, as evidenced by the circumstances of the Data Breach, has created a substantial risk of future identity theft, fraud, or other forms of exploitation,” the lawsuit states.
Morgan seeks to represent all customers whose information was exposed in the data breach. She is suing for negligence, breach of implied contract and unjust enrichment, and is seeking certification of the class action, damages, fees, costs and a jury trial. She also demands that Cricket Wireless implement stronger security measures to protect customer data in the future.
Meanwhile, multiple class action lawsuits have recently been filed against companies due to data breach incidents. The class action lawsuits argue that companies, including Intuit, Ticketmaster, Live Nation, AT&T and several others failed to adequately safeguard and secure consumers’ data in such a way that would have prevented the data breaches.
Were you affected by the Cricket Wireless data breach? Let us know in the comments!
The plaintiffs are represented by Thomas Sizemore and Paul J. Doolittle of Poulin | Willey | Anastopoulo.
The Cricket Wireless data breach class action lawsuit is Alexis Morgan v. Cricket Wireless LLC, Case No. 1:24-cv-03253-ELR in the U.S. District Court for the Northern District of Georgia.
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
1,140 thoughts onCricket Wireless class action claims data breach affects 10M customers
I just got a letter in the stating that my information has been comprised. My bank has been hacked as well as receiving calls about loans that has my email but not my name I highly upset about all of this
I received a text message from cricket stating that my info is part of the breach
Every since I went to Cricket Wireless I have gotten crazy calls and texts stating that I qualify for loans I have been sent texts from somewhere out of the USA stating I qualify for this and that trying to get personal info from me. My phone rings all day long haven’t changed number due to my number is used in too many personal accounts of mine. Thank God someone got to root of this problem was just notified by mail of this incident. Cricket is very deceptive.
Received a letter of data breach and I have been receiving strange calls and transactions on my phone
I just received that same letter yesterday
I am filing because it wasn’t right how I was treated
I’m upset at the fact of the trust that has been broken. I have yet to get a letter or email stating anything of this matter. Reading comments started making sense to me that I’ve been getting more and more spam mail and calls too. Not Happy at all😢
I was unhappy to get the letter which was written on July 19, 2024 from Cricket. I know I have had calls that I didn’t know. lt is unfortunate that privacy was broken, I wonder what they used. I am afraid to see it.
I been receiving unknown calls since I had this phone from cricket and still get over 20 or more spam calls a Day. It’s nerve wrecking..
I’ve been receiving calls,texts with scams and such. I shut down my cash app account because of this
I recieved a letter from cricket over my data being breach may 1 2022 through october 31 2022
I received a letter dated July 15, 2024 informing me that my number ending in 3214 was accessed by cyber criminals between May 1, 2022 and October 31, 2022. I noticed that I was suddenly inundated with so many unknown callers. This made me download the Truecaller app, on my phone which helped to some extent, but some calls came in. I missed some important calls because I was scared of picking up calls. I am 70 years old.