There’s an update to the litigation stemming from two UnityPoint Health phishing incidents that were discovered within months of each other in 2018. Part of the lawsuit was thrown out in 2019, but negligence claims were allowed to go forward. Not surprisingly, that seemed to result in a settlement.
Jessica Davis reports:
Iowa Health System, doing business as UnityPoint Health, has reached a proposed $2.8 million settlement with the millions of patients impacted by two phishing-related data breaches in 2017 and 2018.
The settlement will provide the 1.4 million breach victims with monetary and injunctive relief, including one year of comprehensive credit monitoring and identity theft protection services and reimbursement of ordinary expenses up to $1,000 per settlement class member for costs incurred by credit monitoring and identity theft protection services.
Read more on HealthIT Security.
GovInfoSecurity has additional coverage of the fact that unlike most settlements, this one has no global cap.