A lawsuit accuses prominent retail optical chain Cohen Fashion Optical of failing to protect sensitive customer data following a data breach.
The complaint filed by plaintiff Laura Aiello alleges that the retailer allowed a data breach that compromised customers’ Personally Identifiable Information (PII) and Protected Health Information (PHI). According to the complaint, a ransomware group named Sinobi infiltrated the company’s systems on October 28, 2025, and exfiltrated approximately 350GB of data. The breach allegedly exposed names, addresses, phone numbers, dates of birth, Social Security numbers, and medical insurance information. The filing states that the company has not disclosed the incident or notified affected individuals.
Aiello alleges that Cohen Fashion Optical did not meet its statutory and regulatory obligations to safeguard customer information. The complaint claims that the company failed to implement reasonable security measures, did not warn customers about inadequate security practices, maintained ineffective hardware protections, and did not act promptly once the breach was discovered.
The lawsuit seeks damages for negligence and negligence per se, including alleged violations of Section 5 of the FTC Act. Additional claims include unjust enrichment, breach of implied contract, and breach of confidence.
The plaintiff is represented by attorneys Mark S. Reich and Melissa G. Meyer of Levi & Korsinsky LLP. The case was filed in the United States District Court for the Eastern District of New York under case ID 2:25-cv-06209.