Jonathan Fain

We are investigating a potential ERISA class action lawsuit against Sally Beauty Holding Inc regarding allegations of mismanagement of employees’ retirement plans. The review focuses on whether excessive administrative fees reduced employee savings, whether investment options underperformed compared to industry benchmarks, and whether Sally Beauty Holding Inc breached its fiduciary […]

We are investigating a potential ERISA class action lawsuit against IKEA regarding allegations of mismanagement of employees’ retirement plans. The review focuses on whether excessive administrative fees reduced employee savings, whether investment options underperformed compared to industry benchmarks, and whether IKEA breached its fiduciary duty by failing to act in […]

On November 13, 2024, Conrey Insurance Brokers & Risk Managers detected suspicious activity on its network, later confirming unauthorized access between November 12 and 13. A thorough investigation determined that sensitive information was exposed, affecting 8,759 individuals in the U.S., including one resident of Maine. Written notifications to impacted individuals […]

On April 4, 2025, Good Neighbors Federal Credit Union identified a major data breach that compromised the personal information of 18,621 individuals, including 2 residents of Maine. The breach exposed a wide range of sensitive data, including Social Security numbers, driver’s license numbers, bank and credit card details, financial account […]

Between December 24 and December 27, 2024, iHeartMedia + Entertainment, Inc. experienced a network security incident in which sensitive personal and health information stored on systems at several of its local stations was accessed by an unauthorized third party. The company launched an investigation and completed its review on April […]

On or around October 6, 2024, Drug and Alcohol Treatment Services, Inc. (DATS) detected unauthorized activity within its network and took immediate steps to secure its systems. A third-party forensic investigation later confirmed that files containing sensitive patient data may have been accessed by an unauthorized actor. The breach affected […]

On December 11, 2024, Sunsweet Growers Inc. discovered that certain systems in its computer network were inaccessible due to unauthorized access. A third-party investigation confirmed that an unauthorized actor had breached parts of the network. Although there is no direct evidence that employee data was accessed, Sunsweet could not rule […]

On June 7, 2024, Scrubs & Beyond LLC, operating as Kindthread, discovered unauthorized activity on its computer network. A subsequent investigation confirmed that an unauthorized individual had accessed sensitive data. The company completed its review of the compromised information on April 16, 2025, and began notifying affected individuals. Exposed data […]

On February 7, 2025, the Law Offices of Chris M. Ingram detected suspicious activity on its network and determined that a computer server storing client information had been accessed without authorization. The firm launched an investigation with external forensic experts, which confirmed that information related to clients’ legal matters may […]

Thompson Coburn experienced a data breach on May 28–29, 2024, that involved unauthorized access to its systems containing sensitive data belonging to patients of Presbyterian Healthcare Services (PHS). The breach exposed information such as names, dates of birth, Social Security numbers, medical record and patient account numbers, prescription and treatment […]