In 2021, Quest-owned ReproSource Fertility Diagnostics disclosed a ransomware attack in August potentially affecting 350,000 patients. One month after disclosure, they were sued.
Now Marianne Kolbasuk McGee reports that there is a settlement.
A Massachusetts federal court preliminarily approved the proposed settlement on Wednesday. The proposed class action litigation, which consolidated two similar lawsuits against Marlborough, Massachusetts-based ReproSource Fertility Diagnostics, had alleged negligence, violations of Massachusetts data breach reporting and other state laws, and an array of other claims involving the data security incident.
The lawsuit sought punitive and other financial damages as well as n injunctive order for the fertility testing laboratory to improve its data security practices.
Besides a settlement fund of $1.25 million for payments to class members and plaintiffs, the agreement calls for ReproSource to implement a long list of data security improvements. One is that the company, at its own expense, will strengthen its monitoring and detection tools as safeguards against ransomware and other cyberthreats.
Read more at BankInfoSecurity.