The State’s Attorney General is asking Living Social for information after last week’s disclosed theft of the personal information for 50 million customers.
LivingSocial.com is a daily deals website that is partly owned by Amazon.com. According to AllthingsD.com, the company disclosed the data breach in an email to employees which resulted in “unauthorized access to some customer data from our servers.” The company said that the data accessed included customer names, email addresses, date of birth and passwords which were encrypted. Living Social told AllthingsD.com that no credit card data was accessed.
Connecticut Attorney General George Jepsen issued a statement along with Maryland Attorney General Douglas F. Gansler requesting the company to, “provide a detailed timeline of the incident, including when and how the company learned of the data breach, as well as a breakdown on the number of affected individuals in each state and the types of information compromised.”
In addition, the states are requesting information on Living Social’s internal security measures, whether any customers have reported unauthorized charges on their accounts, copies of privacy policies, copies of security reports, and a plan of action going forward in order to prevent further incidents and when the plan will be implemented.
State law requires companies doing business in Connecticut to protect personal information of customers, and notify the Attorney General’s office and customers of any security breaches.