The plaintiff, who received medical services from the defendants and was notified by the companies that her information had been compromised in the breach, says that shortly after the incident and on several occasions in April, “unknown third parties” used her credit card to make unauthorized purchases over the internet. “Stolen personal data of Plaintiff and members of the Class represents essentially one-stop shopping for identity thieves.” “The personal data of Plaintiff and members of the Class stolen in the Data Breach constitutes a dream for hackers and a nightmare for Plaintiff and the Class,” the complaint relays. As a result, the unauthorized individuals who accessed the defendants’ data were provided with “the tools to perform the most thorough identity theft,” the suit says. Per the case, the defendants reported to the Maine Attorney General that “insider wrongdoing” had exposed to unauthorized parties the information of almost 3.3 million patients, data that was “accessed or downloaded prior to deletion,” the suit relays.ĭespite discovering the breach in February, the defendants waited until late May to send notice of the incident to those affected, the complaint says.Īccording to the case, 20/20 and iCare failed to comply with HIPAA and industry standards for cybersecurity. The lawsuit states that 20/20 Eye Care Network and parent company iCare Health Solutions provide eye and hearing care services and administration to millions of consumers and, in the process, collect the individuals’ personally identifiable and protected health information. The case says that those affected by the breach now face a “substantial increased risk of identity theft” and fraud due to the defendants’ apparent failure to implement adequate security systems, disclose to patients that they had inadequate security to protect sensitive data, take available steps to prevent the breach and provide timely notice of the incident. “The deficiencies in Defendants cyber-security measures allowed the hackers to access patient data, which included the ability to view and edit the data,” the complaint relays.Īccording to the suit out of Florida federal court, the data compromised in the breach included patients’ names, dates of birth, Social Security numbers, member identification numbers and health insurance information.
The 30-page case alleges the breach, which reportedly occurred in January 2021 and was disclosed to patients in late May, was the result of the defendants’ failure to implement “reasonably adequate cyber-security measures” to protect consumers’ information. and iCare Health Solutions, LLC face a proposed class action over a data breach that earlier this year reportedly compromised the personal and protected health information of nearly 3.3 million consumers. New to ? Read our Newswire DisclaimerĢ0/20 Eye Care Network, Inc.
0 kommentar(er)
