Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

MedData Settles Data Breach Lawsuit for $7M

April 18, 2024
Reading Time: 3 mins read
in News
MedData Settles Data Breach Lawsuit for $7M

MedData, a Spring, TX-based revenue cycle management firm, recently settled a class action lawsuit for $7 million following the exposure of personal and health information belonging to 136,000 individuals on a public-facing website.

The inadvertent data exposure occurred between December 2018 and September 2019 when a MedData employee uploaded the data to personal folders on GitHub Arctic Code Vault, a public-facing part of the GitHub website. The exposed data remained unprotected for over a year until a security researcher notified MedData about the breach on December 10, 2020. The files were subsequently removed from GitHub on December 17, 2020.

This settlement concludes the last remaining class action lawsuit against MedData related to the data breach, with four previous lawsuits having been dismissed. Under the terms of the settlement, class members have two payment options. They can claim documented, unreimbursed out-of-pocket expenses related to the breach up to $5,000 per class member, or they can claim up to $500 for minimal affirmative action in response to being notified about the breach. Additionally, all class members are eligible for 36 months of health data and fraud monitoring services at no cost, including a $1 million identity theft insurance policy.

As part of the settlement, MedData is required to implement and maintain an enhanced cybersecurity program. This program includes robust monitoring and auditing for data security issues, annual cybersecurity testing, employee training on data privacy, data encryption, enhanced access controls, annual penetration testing, a data deletion policy, and a monitored internal whistleblowing mechanism. The company’s board must also consider appropriate cybersecurity spending annually and regularly update internal security policies and procedures.

Reference:
  • MedData Resolves Data Breach Lawsuit for $7M Implements Stronger Measures
Tags: April 2024Cyber NewsCyber News 2024Cyber threatsCybersecurityGitHubMedData
ADVERTISEMENT

Related Posts

UK Romance Scams Net Fraudsters $144 Million

Google Launches AI To Fight Scams In India

June 17, 2025
UK Romance Scams Net Fraudsters $144 Million

UK Romance Scams Net Fraudsters $144 Million

June 17, 2025
WhatsApp Status Ads Arrive With Privacy Vow

WhatsApp Status Ads Arrive With Privacy Vow

June 17, 2025
Arsen Launches AI Vishing Sim for Large-Scale Voice Phishing

Danish Agency Ditches Microsoft for Digital Independence

June 16, 2025
Arsen Launches AI Vishing Sim for Large-Scale Voice Phishing

Arsen Launches AI Vishing Sim for Large-Scale Voice Phishing

June 16, 2025
Arsen Launches AI Vishing Sim for Large-Scale Voice Phishing

Kali Linux 2025.2 Released with New Tools

June 16, 2025

Latest Alerts

Water Curse Group Hits Developers Via GitHub

XDSpy Exploits Windows LNK Zero Day

CISA Warns Of Apple Zero Click Exploit

PyPI Malware Steals AWS, CI/CD, macOS Data

IBM Backup Service Flaw Allows Elevated Access

Image Hiding in DNS TXT Records

Subscribe to our newsletter

    Latest Incidents

    Zoomcar Data Breach Hits 8.4 Million Users

    Qilin Gang Leaks Asefa FC Barcelona Data

    Gunra Claims 45TB Hack On Colombia Justice

    Hackers Leak 10K VirtualMacOSX Customer Data

    Canada WestJet Airline Contains Cyberattack

    Washington Post Investigates Cyberattack on Emails

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial