Data Breach Alert: Forward Air Corporation

Console and Associates, P.C.

In September of this year, Forward Air Corporation (“Forward Air”) announced that personal, identifying and financial information pertaining to thousands of current and former employees was compromised through a recent data breach. On September 24, 2021, Forward Air sent more than 40,000 current and former employees a data breach notification letter, explaining that the compromised information includes the name, address, date of birth, Social Security number, driver’s license number, passport number, or bank account number. This type of data breach exposes all affected employees of Forward Air to increased risks of identity theft or other financial losses.

If you recently received a Forward Air Corporation data breach letter, it is very important that you take the necessary steps to protect yourself. Additionally, anyone whose information was compromised in the breach may be eligible for financial compensation through a data breach lawsuit if evidence emerges that Forward Air mishandled their sensitive information.

Can Data Breach Victims Hold Forward Air Financially Liable?

As your employer, Forward Air has a tremendous amount of information about you in its possession. You assume—reasonably so—that the company takes whatever steps it needs to in order to protect employees’ sensitive information. But what happens if it turns out that Forward Air failed to implement safeguards to protect against a cyberattack?

Employers have a legal duty to protect employees’ personal, identifying and financial information. If an employer or any other business mishandles consumer data, affected parties may be able to pursue a data breach lawsuit against the company. However, data breach and consumer privacy laws are complex, and, at this point, it is unclear if Forward Air bears any responsibility for the breach. Our data breach attorneys are currently investigating whether there is a possible class action data breach lawsuit against Forward Air Corporation. If you have questions about your ability to bring a Forward Air Corporation class action lawsuit, it is important you reach out to a data breach lawyer as soon as possible.

What to Do if You Received a Forward Air Corporation Data Breach Letter

If Forward Air Corporation sent you a data breach notification letter from, it means that your sensitive information was accessible by an unauthorized third party. It doesn’t necessarily mean that the third-party who had access to your information will use it for criminal purposes. However, this is a possibility that should not be ignored, as the number of identity theft crimes has increased dramatically in recent years. Thus, it is important that you take the following steps to protect yourself from the financial risks associated with a data breach, including:

  1. Read the data breach letter from Forward Air in its entirety to determine what information was compromised;
  2. Make a copy of the data breach letter and keep it for your records;
  3. Take advantage of the free credit monitoring service provided by Forward Air Corporation;
  4. Change all your online account passwords;
  5. Regularly check your bank account and credit report for any signs of suspicious activity, fraud, or identity theft;
  6. Contact one of major credit bureaus and request they add a fraud alert to your account; and
  7. Notify your banks and credit card companies of the data breach.

About Forward Air Corporation

Forward Air is a North American transportation company based in Greeneville, Tennessee. The company has 12 nationwide hubs, and conducts its major operations out of a facility in Columbus, Ohio. Founded in 1990, Forward Air provides surface transportation and logistics services to the air freight market. The company also provides ground transportation, generating a total of more than $1.4 billion in annual revenue.

The Details of the Forward Air Corporation Consumer Data Breach

According to the company’s most recent data breach letter, on December 15, 2020, Forward Air noticed suspicious activity on the company’s servers. After a months-long investigation into the incident, Forward Air announced the names, addresses, dates of birth, Social Security numbers, driver’s license numbers, passport numbers, or bank account numbers of more than 40,000 current and former employees were accessible by an unauthorized third party between November 2020 through early December 2020.

Below is a copy of the data breach letter issued by Forward Air Corporation (a copy of the actual notice sent to consumers can be found here):

Dear [Consumer],

Forward Air Corporation (“Forward Air”) writes to inform you of a recent incident that may impact the security of some of your information. This letter contains information about the incident, our response, and steps you should take to better protect against the possibility of identity theft and fraud, should you feel it appropriate to do so.

What Happened?

On December 15, 2020, Forward Air learned of suspicious activity occurring within certain company computer systems. Forward Air immediately launched an investigation to determine the nature and scope of the incident. The investigation determined that certain Forward Air systems were accessible in November and early December 2020, and that certain data, which may have included your personal information, was potentially viewed or taken by an unknown actor.

What Information Was Involved?

On or about July 30, 2021, we determined that your name, address, date of birth, Social Security number, driver’s license number, passport number, or bank account number were potentially viewed and/or taken by an unknown actor. At this time, there is no indication that anyone’s information has been subject to actual or attempted misuse. Nevertheless, we are notifying you because your information was stored on our systems.

What We Are Doing.

The confidentiality, privacy, and security of information entrusted to us are among our highest priorities, and we take this incident very seriously. As part of our ongoing commitment to information security, we are reviewing our existing policies and procedures regarding data privacy and are evaluating additional measures and safeguards to protect against this type of incident in the future. In addition to notifying you, we will also be notifying state regulators, as required.

As a safeguard, we have arranged for you to enroll, at no cost to you, in an online credit monitoring service (myTrueIdentity) for 12 months provided by TransUnion Interactive, a subsidiary of TransUnion®, one of the three nationwide credit reporting companies.

What You Can Do. You can find out more about how to protect against potential identity theft and fraud in the enclosed Steps You Can Take to Help Protect Personal Information. There you will also find more information on the credit monitoring services we are offering and how to enroll.

For More Information.

We understand that you may have questions about this incident that are not addressed in this letter. If you have additional questions, please call 1-866-853-3629, Monday through Friday, 9:00 a.m. to 9:00 p.m. Eastern Time, except holidays. You may also write to Forward Air at 1915 Snapps Ferry Road, Building N, Greeneville, Tennessee 37745.

We sincerely regret any inconvenience or concern this incident has  caused.

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Console and Associates, P.C. | Attorney Advertising

Written by:

Console and Associates, P.C.

Console and Associates, P.C. on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide

This website uses cookies to improve user experience, track anonymous site usage, store authorization tokens and permit sharing on social media networks. By continuing to browse this website you accept the use of cookies. Click here to read more about how we use cookies.