Orange, Calif.-based, physician–owned Heritage Provider Network agreed to pay a nearly $50 million settlement to resolve class-action litigation regarding a cyberattack, according to an Oct. 15 report from The HIPAA Journal.
Here are five more things to know:
- The lawsuit stems from a December 2022 data breach that affected more than 3.4 million individuals.
- Hackers gained access to patient data on Heritage’s servers and removed sensitive data including names, addresses, dates of birth, Social Security numbers and healthcare information.
- The plaintiffs in the lawsuit claim that Heritage was negligent for failing to implement reasonable security measures.
- Heritage Provider Network, Regal Medical Group and eight other co-defendants have maintained that there is no wrongdoing or liability.
- The settlement has received preliminary approval from the court.
