On or around February 10, 2025, The Hertz Corporation, including Hertz, Dollar and Thrifty brands (collectively, “Hertz”) confirmed that its file transfer vendor, Cleo Communications US, LLC (“Cleo”), experienced a data breach on its computer network. Based on a forensic investigation, Hertz and Cleo determined that cybercriminals infiltrated Cleo’s inadequately secured computer environment and accessed certain Hertz data files from October 2024 through December 2024. The investigation further determined that, through this infiltration, cybercriminals accessed files containing the sensitive personal information of hundreds of thousands of individuals.
The information exposed in the data breach includes, but is not limited to:
- Names
- Social Security numbers
- Dates of birth
- Financial account information
- Payment card information
- Driver’s license numbers
- Government ID numbers
- Health insurance information
As a result of the Hertz data breach, these individuals’ personal and highly confidential information may be in the hands of cybercriminals who can place the information for sale on the dark web or use the information to perpetrate identity fraud.
Murphy Law Firm is investigating claims on behalf of all individuals whose personal and confidential information was potentially compromised in the data breach. We are evaluating legal options, including a potential class action lawsuit, to recover damages for individuals who were affected by the Cleo data breach.