Capital One Reaches $190 Million Settlement Over Data Breach
Capital One has agreed to a $190 million settlement to resolve a class-action lawsuit stemming from a massive 2019 data breach that exposed the personal information of over 100 million customers. The settlement, announced Thursday, marks one of the largest payouts in U.S. history for a cybersecurity incident.
The breach, which occurred in March 2019 but was disclosed in July of that year, compromised sensitive data including Social Security numbers, bank account details, and credit card applications. A hacker exploited a misconfigured web application firewall to access the information, prompting widespread outrage and legal action.
Under the terms of the settlement, affected customers will be eligible for reimbursement of out-of-pocket losses, such as fraudulent charges or identity theft expenses. Additionally, Capital One will cover up to $25,000 in losses per individual and provide free credit monitoring services for those impacted.
The settlement comes as cybersecurity remains a top concern for Americans, with data breaches increasingly affecting major corporations and individuals alike. The Capital One breach was particularly notable due to its scale and the involvement of a former Amazon Web Services employee, Paige Thompson, who was convicted in 2022 for her role in the hack.
Public reaction to the settlement has been mixed. While some applaud the compensation offered, others argue that it fails to address the long-term risks of identity theft. Legal experts note that the payout underscores the growing financial consequences companies face for failing to protect customer data.
Capital One has also committed to enhancing its cybersecurity measures as part of the settlement. The company stated, "We are pleased to resolve this matter and remain focused on safeguarding our customers’ information."
The settlement is subject to approval by a federal judge, with a hearing scheduled for August 2026. This development is trending today as consumers and businesses alike grapple with the ongoing challenges of data security in an increasingly digital world.
