Posted On July 18, 2022 Consumer Privacy & Data Breaches
July 18, 2022 – Recently, Lawson Products, Inc. reported a data breach with the office of the Attorney General for the State of Texas. While news of the breach only recently broke and details are limited, based on the company’s filing it appears that the incident leaked the following data types: names, addresses, Social Security numbers, driver’s license numbers, state-issued identification numbers, passport numbers, as well as financial account information and medical information. The data breach is believed to have impacted as many as 29,639 individuals. On July 14, 2022, Lawson Products, Inc. began sending out data breach notification letters to all individuals affected by the recent incident.
If you received a data breach notification, it is essential you understand what is at risk. The data breach lawyers at Console & Associates, P.C. are actively investigating the Lawson Products data breach on behalf of people whose information was exposed. As a part of this investigation, we are providing free consultations to anyone affected by the breach who is interested in learning more about the risks of identity theft, what they can do to protect themselves, and what their legal options may be to obtain compensation from Lawson Products, Inc.
While Lawson Products, Inc. provided official notice of the breach, it has yet to make any details of the breach publicly available other than that which is contained in the data breach letter issued by the company. Evidently, on February 8, 2022, Lawson Products became aware of a cyber incident affecting its computer network. In response, the company secured its network and engaged the assistance of a cybersecurity firm to investigate the incident.
On February 16, 2022, the company’s investigation revealed that certain confidential information—including sensitive consumer information—was accessible to an unauthorized third party.
Upon discovering that sensitive consumer data was accessible to an unauthorized party, Lawson Products then reviewed the affected files to determine exactly what information was compromised. While the breached information varies depending on the individual, it may include your,
On July 14, 2022 Lawson Products began sending out data breach letters to all individuals whose information was compromised as a result of the recent data security incident.
Lawson Products, Inc. is a manufacturer, distributor and retailer based in Chicago, Illinois. Lawson Products deals in a range of hardware, such as hardware and tools such as abrasives, automotive tools, chemicals, cutting tools, fasteners, welding tools and hand tools. Lawson Products primarily caters to small businesses, although the company also maintains an online retail store. Lawson Products employs more than 1,840 people and generates approximately $417 million in annual revenue.
As of an April 2022 merger, Lawson Products is now a wholly owned subsidiary of Distribution Solutions Group. Distribution Solutions Group is comprised of Lawson Products, Inc., Gexpro Services, and TestEquity, and is publicly traded on the NASDAQ under the ticker symbol “DSGR.”
At Console & Associates, P.C., our consumer privacy lawyers monitor all security and data breaches to help affected consumers pursue their legal remedies. We offer free consultations to victims of data breaches and can explain your rights in clear, understandable terms so you can make an informed decision about how to proceed with your case. If you’ve been affected by the Lawson Products data breach or any other data security incident, Console & Associates, P.C., will investigate your case at no charge and offer you thorough advice about how to most effectively proceed with your case. If you decide to bring a case, we only get paid if you do. If your claim is successful, any legal fees are either paid by the defendant or come out of the funds recovered from the defendant. If your claim doesn’t result in a recovery, you will pay nothing.
Below is a copy of the initial data breach letter issued by Lawson Products, Inc. (the actual notice sent to consumers can be found here):
Lawson Products, Inc. (“Lawson”) takes the privacy and security of information entrusted to us very seriously. We are writing to notify you of a cybersecurity incident that may impact the security of your personal information. We apologize for any concern this may cause and assure you that we are giving this matter our urgent attention. This letter provides information about the incident and about steps we are taking to help you protect your personal information.
What Happened: On February 8, 2022, Lawson became aware of a cyber incident on its computer network potentially involving unauthorized access by a third party. Lawson responded by securing its network and began an investigation, including engaging a cybersecurity forensics firm. On February 16, 2022, Lawson determined that certain confidential information, including potentially certain personal information, may have been compromised.
Lawson continued its investigation to fully understand the nature and scope of the incident, and to determine what personal information may have been impacted. We have now completed that process and are notifying impacted individuals.
What Information Was Involved: The personal information impacted may include your [Redacted].
What We Are Doing: The privacy and security of information entrusted to us is of the utmost importance to Lawson, and we take this incident very seriously. We have reported this incident to law enforcement. As part of our ongoing commitment to ensuring the privacy and security of information in our care, we have conducted a thorough investigation into this incident and continue to monitor our systems’ security.
What You Can Do: It is always important to remain vigilant and monitor your financial account statements and credit reports for errors and signs of fraud or identity theft. In addition, Lawson is offering you two years of free Equifax Credit WatchTM Gold credit monitoring and identity theft protection service. You will not be billed for this service. Instructions for enrolling in this service are enclosed with this letter.
Other Important Information: If you believe you are the victim of identity theft, you should contact your local law enforcement or your state’s Attorney General, as well as the Federal Trade Commission (FTC). Additional information is available from the [Redacted].
For More Information: Please know that the security of your information is of paramount importance to us, and we deeply regret any worry or inconvenience this incident may have caused. We have set up a call center staffed by external experts to answer questions you may have about this incident. If you have additional questions, please call 1-877-621-0530, Monday through Friday, 9:00 a.m. to 9:00 p.m. Eastern Time, except holidays.