A class action lawsuit against PruittHealth alleges that the healthcare provider failed to adequately protect its data, leading to a significant data breach in 2023. Plaintiff Tina Clayton, a former employee, claims the company’s poor cybersecurity measures allowed hackers to infiltrate its systems in November 2023. The breach reportedly compromised the personal information of over 56,000 individuals, including names, Social Security numbers, and healthcare records.
The hackers reportedly threatened to release the stolen data unless a ransom was paid. Although the hackers claimed to have published the data on December 7, 2023, the site was taken down before it could be examined by forensic experts, leaving PruittHealth unable to confirm which information was exposed. This uncertainty has heightened concerns about the risk of identity theft and fraud for those affected.
Clayton asserts that PruittHealth failed to meet basic cybersecurity standards, using outdated technology and neglecting essential employee training on email security and password protection. As a result, she and other class members are now required to monitor their financial accounts closely to prevent potential identity theft and fraud.
The lawsuit seeks damages for negligence, breach of contract, breach of fiduciary duty, and unjust enrichment. Similar legal action has been taken against other healthcare providers, highlighting ongoing concerns about data security in the industry.
Reference: