Swati Nair reports:
Infosys announced that its subsidiary, Infosys McCamish Systems (IMS), has reached an agreement with the US State of Vermont’s Department of Financial Regulation (DFR). This agreement, known as a stipulation and consent order, resolves issues related to a cyber incident without requiring a hearing. IMS is obligated to pay a USD 125,000 administrative penalty within 30 days of the order’s entry by the Commissioner.
… In March 2025, Infosys had previously communicated that IMS would settle six class action lawsuits in the US concerning a 2023 cyber incident. As part of this settlement, IMS agreed to contribute USD 17.5 million to a fund addressing these lawsuits. The recent agreement with Vermont’s DFR is another step in resolving legal matters linked to cybersecurity breaches.
Read more at Good Returns.
Related: STIPULATION AND CONSENT ORDER