DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Retirement plan participants urge judge not to dismiss Horizon Actuarial Services data breach class action

Posted on October 13, 2022 by Dissent

Abraham Jewett reports that a group of Horizon Actuarial Services retirement plan participants are trying to save their proposed class action lawsuit from dismissal by a judge. The litigation stems from a ransomware incident in November 2021.

The proposed class of more than 2 million Horizon retirement plan participants argue that the data breach was “easily foreseeable” and that it has injured them both emotionally and financially.

The group claim in their complaint—which was consolidated in January—that Horizon “failed abysmally” to protect personally identifiable information that the company “collected and profited from” and now “takes no responsibility for the data breach” having occurred.

The plaintiffs have also filed a motion for leave to amend their complaint.

Read more at Top Class Actions, which reports that the class action lawsuit is Sherwood, et al. v. Horizon Actuarial Services, LLC, Case No. 1:22-cv-01495, in the U.S. District Court for the Northern District of Georgia.

In March 2022, DataBreaches reported that the Georgia business associate had notified HHS that 39,418 patients were impacted by what they described as a hacking/IT incident. A statement on their website (link no longer working) explained that threat actors contacted them on November 12 about an attack on November 10 and 11 that impacted plan members and families of clients. As we reported in March:

Horizon forthrightly acknowledged that they paid the ransom demand:

During the course of the investigation, Horizon Actuarial negotiated with and paid the group in exchange for an agreement that they would delete and not distribute or otherwise misuse the stolen information.

They do not reveal who the threat actors were.

Subsequently, other clients of Horizon were identified, and by mid-June of this year, there were at least nine proposed class action lawsuits against Horizon.


Related:

  • IVF provider Genea notifies patients about the cyberattack earlier this year.
  • Clorox Files $380M Suit Alleging Cognizant Gave Hackers Passwords in Catastrophic 2023 Cyberattack
  • Legal Silence and Chilling Effects: Injunctions Against the Press in Cybersecurity
  • PowerSchool commits to strengthened breach measures following engagement with the Privacy Commissioner of Canada
  • Two more entities have folded after ransomware attacks
  • Data breach feared after cyberattack on AMEOS hospitals in Germany
Category: Breach IncidentsCommentaries and AnalysesHealth DataSubcontractorU.S.

Post navigation

← Update from CommonSpirit confirms ransomware attack
Australia’s Medibank reports cyber incident, shares on trading halt →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
  • Hacker group “Silent Crow” claims responsibility for cyberattack on Russia’s Aeroflot
  • AIIMS ORBO Portal Vulnerability Exposing Sensitive Organ Donor Data Discovered by Researcher
  • Two Data Breaches in Three Years: McKenzie Health
  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • California Attorney General Announces $1.55M CCPA Settlement with Healthline.com
  • Canada’s Bill C-2 Opens the Floodgates to U.S. Surveillance
  • Wiretap Suits Pit Old Privacy Laws Against New AI Technology
  • Action against tiny Scottish charity sparks huge ICO row
  • Congress tries to outlaw AI that jacks up prices based on what it knows about you
  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.