What the MOVEit Data Breach Court Case Means for Your Information

A federal court has ruled that families and individuals affected by the MOVEit data breach can continue their negligence claims against Progress Software and the companies that used their file transfer system. The court rejected attempts by these companies to dismiss the case. MOVEit is a software tool that many organizations use to transfer files securely, but it was compromised by attackers who exploited a security flaw. If you received a notification letter in 2023 or 2024 saying your data was exposed in a MOVEit breach, this court decision affects you. Many different organizations used MOVEit software, including healthcare providers, government agencies, and businesses.

Your personal information such as names, addresses, Social Security numbers, or medical records may have been exposed. The court ruling means affected people can continue seeking accountability from the companies involved. If you were affected by the MOVEit breach, take these steps:

1. Review any breach notification letters you received to understand exactly what information was exposed.
2. If Social Security numbers were involved, place a free fraud alert or credit freeze with the three major credit bureaus: Equifax, Experian, and TransUnion.
3. Monitor your credit reports regularly for unauthorized accounts or suspicious activity. You can get free reports at AnnualCreditReport.com.
4. Keep all breach notification letters and related documents in case you need them for identity theft reports or future legal matters.
5. Watch your bank accounts and medical statements for unusual charges or activity. Going forward, ask any company that handles your sensitive information how they protect it and what file transfer systems they use. When you receive breach notifications, take them seriously and act quickly. Consider using a password manager to create unique passwords for every account, so if one service is breached, your other accounts remain secure. Sign up for alerts from your bank and credit card companies to catch suspicious activity immediately.