Legal help for data breach compensation claims

Companies hit by multiple cyberattacks – advice for victims

Start Your Claim Today!

Your privacy is extremely important to us. Read how we handle your data in our Privacy Policy

In many cases, the costly repercussions of data breaches can push the companies involved to make improvements to their cybersecurity and data protection measures to ensure that the same mistakes are not made again. However, some companies have succumbed to multiple cyberattacks, failing to learn from the failures that brought about the first attack, even in cases where the initial data breach was widely publicised.

If a company has been subjected to multiple cyberattacks, it would suggest that it has not been put under enough to pressure to change their ways. At Your Lawyers – The Data Leak Lawyers – as leading data compensation experts, we believe that good data protection is non-negotiable. This is why we aim to use our legal know-how to hold data controllers responsible for their actions.

In a data breach claim, you could be eligible to recover compensation for the damage caused to you by the exposure of your private information, so contact us if you think you have a right to justice.

Why are companies hit by multiple cyberattacks?

It is easy to see why a single company may be hit by cyberattacks on multiple occasions; if hackers have been met with success on their first attempt, why wouldn’t they try to breach an organisation’s systems again? In fact, some cybercriminals may be able to recognise that an attack has not been noticed, which can act as a signal to them that they may be able to strike again in future.

The most important factor, however, can be the company’s own inaction. Many people would assume that a cyberattack can act as a wake-up to a company with poor cybersecurity, but often data controllers have little incentive to make lasting change, as they may not be punished effectively when a breach does occur.

Examples of companies hit by multiple cyberattacks

Even high-profile international companies can suffer multiple cyberattacks. In November 2018, Marriott revealed that hundreds of millions of guests’ information had been accessed by an unauthorised third party since 2014. The attack had not been identified until September 2018. Subsequently, in January 2020, it was revealed that attackers had once again accessed private data held by Marriott, using login credentials of two employees to get into an application used by hotels under the Marriott brand. On this occasion, a further 5.2 million guests were affected.

Similarly, British Airways suffered two monumental cyberattacks in 2018, the first of which affected rewards customers who had made bookings between 21st April and 28th July, and the latter of which affected anyone who had made or amended a booking between certain dates 21st August and 5th September. In total, approximately 380,000 people were affected.

In order to recover data breach compensation, British Airways and Marriott victims can join our respective group actions to start their claims.

Making a data breach claim

The cases described above are just two examples of large companies hit by multiple cyberattacks. Despite the fact that cybercrime is constantly evolving, many organisations still fail to recognise the importance of strong cybersecurity measures, and the general lack of awareness for data security only makes it easier for data protection negligence to slip under the radar.

As specialists in data breach claims, we are determined to ensure that poor data controllers suffer the consequences of their actions. We want to ensure that data breach victims can recover the compensation they deserve, which is why we offer No Win, No Fee representation to eligible claimants.

Contact us today to receive free, no-obligation advice on your potential claim.

IMPORTANT: advice on this page is intended to be up-to-date for the 'first published date'.

Request a call back from our team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.
All fields marked with an * are required.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy.
You have the right to object to the processing of your personal data.


Cybercriminals targeting medical data in attacks
Council debt chasing data breach