DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Health Aid of Ohio settles class action lawsuit stemming from 2021 ransomware attack

Posted on July 9, 2022 by Dissent

There’s one thing I am sure of:  even if I fail to cover some breaches on this site, class action lawyers will still be busy suing entities.

Top Class Actions reports a settlement in a suit involving a Health Aid of Ohio breach in February of last year.

Although not reported on this site at the time, DataBreaches’ non-public worksheets had noted that Conti threat actors had added Health Aid of Ohio to their dedicated leak site in March. In April, Health Aid of Ohio issued a breach notice that disclosed the attack of February 19.  The notice revealed that patients’ names, dates of birth, Social Security numbers, medical diagnoses, insurance information, telephone numbers and other information might have been exfiltrated in the breach.

Health Aid of Ohio also reported the incident to HHS in April 2021 as impacting 141,149 patients.

As Top Class Actions reports, some affected consumers filed suit, alleging negligence, invasion of privacy, unjust enrichment, and more. As is the norm in such matters, Health Aid of Ohio hasn’t admitted any wrongdoing but has agreed to settle the suit.

The case is Kathleen Devine, et al. v. Health Aid of Ohio, Inc., Case No. CV-21-948117., Case No. CV 21 948117, in the Court of Common Pleas of Cuyahoga County, Ohio

The settlement discusses two subclasses: those whose Social Security numbers were involved, and those who did not have SSN involved. Members of the first subclass may be eligible for monetary compensation up to $250.00; in cases of actual fraud, more compensation may be available, up to $2,500.00 per class member.

All class members, even those who did not have SSN involved,  will be eligible for one year of credit monitoring and restoration services.

More details can be found in the settlement agreement.

Those who want to object to the settlement or opt out of the settlement have until July 22 to do so.

In order to receive a payment from the settlement, eligible class members must submit a valid claim form by Aug. 22, 2022.

The final approval hearing for settlement is scheduled for Sept. 20, 2022.

The court-approved settlement website, with details of the settlement, can be found at HealthAidSettlement.com.

Related posts:

  • Who is on TEKsystems Intel Leak
  • Meanwhile, over at Uber Leaks…
  • Break Down and Insight into Project Sun Rise African data leak
  • 16 further Government sites hacked by @TeamGhostShell,
Category: Breach IncidentsHealth DataMalware

Post navigation

← The Norwegian SA issues fine to the Municipality of Østre Toten for flawed information security
Bits ‘n pieces, Saturday edition →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.