Dunkin’ Donuts agrees to pay for ‘dangerous brew of lax security’
AG: Dunkin’ ignored warnings and refused to implement safeguards
One of Brooklyn’s most ubiquitous coffee shop chains, Dunkin’ Donuts, agreed to pay a $650,000 fine and reimburse all of its hacked customers after the franchisor for the company agreed to a settlement with New York State Attorney General Letitia James, the AG’s Office announced on Tuesday.
The settlement, which is with Dunkin’ Brands Inc., resolved a lawsuit over the company’s failure to respond to successful cyberattacks on tens of thousands of its customers’ online accounts.
“For years, Dunkin’ hid the truth and failed to protect the security of its customers, who were left paying the bill,” said Attorney General James. “It’s time to make amends and finally fill the holes in Dunkin’s’ cybersecurity. Not only will customers be reimbursed for lost funds, but we are ensuring the company’s dangerous brew of lax security and negligence comes to an end.”