NEW YORK: Dunkin’ Donuts failed to notify almost 20,000 customers across the US about cyberattacks on their accounts in 2015 and inadequately warned more than 300,000 customers about another hacking attack in 2018, New York’s attorney general said in a lawsuit announced on Sept 26.
"Dunkin’ failed to protect the security of its customers," Attorney General Letitia James said in a statement. "And instead of notifying the tens of thousands impacted by these cybersecurity breaches, Dunkin’ sat idly by, putting customers at risk."