Norton Healthcare Reaches $11M Settlement Over 2023 Ransomware Attack
Norton Healthcare has agreed to a $11 million settlement in a class-action lawsuit stemming from a May 2023 ransomware attack that disrupted its computer systems. The breach, detected on May 9, 2023, occurred after suspicious activity was flagged on Norton’s servers, followed by a threatening fax demanding payment. An investigation revealed unauthorized access to network storage devices between May 7 and May 9.
The lawsuit, filed in June 2023 against Norton Healthcare and Norton Hospitals, alleged negligence, breach of contract, privacy violations, and failure to meet industry cybersecurity standards. Plaintiffs claimed Norton did not adequately protect sensitive data or train employees on security protocols. While Norton maintained that patient personal information was not accessed, it later notified potentially affected individuals.
Under the settlement, class members may receive:
- Three years of medical monitoring services
- Up to $2,500 in out-of-pocket expense reimbursements
- Up to $80 for lost time due to the breach
- A minimum $5 cash payment
A final approval hearing is scheduled for May 15. The settlement fund will be distributed pending court approval.
Norton Healthcare TPRM report: https://www.rankiteo.com/company/norton-healthcare
Norton Hospitals TPRM report: https://www.rankiteo.com/company/norton-healthcare
"id": "nor1771969204",
"linkid": "norton-healthcare",
"type": "Ransomware",
"date": "2/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Potentially affected '
'individuals (number not '
'specified)',
'industry': 'Healthcare',
'name': 'Norton Healthcare',
'type': 'Healthcare Provider'}],
'attack_vector': 'Unauthorized access to network storage devices',
'customer_advisories': 'Notification to potentially affected individuals',
'data_breach': {'personally_identifiable_information': 'Potentially (disputed '
'by Norton)',
'sensitivity_of_data': 'High (healthcare data)',
'type_of_data_compromised': 'Potentially sensitive data '
'(disputed by Norton)'},
'date_detected': '2023-05-09',
'description': 'Norton Healthcare agreed to an $11 million settlement in a '
'class-action lawsuit following a May 2023 ransomware attack '
'that disrupted its computer systems. The breach was detected '
'on May 9, 2023, after suspicious activity was flagged, '
'followed by a threatening fax demanding payment. Unauthorized '
'access to network storage devices occurred between May 7 and '
'May 9.',
'impact': {'brand_reputation_impact': 'Negative impact due to lawsuit and '
'breach',
'data_compromised': 'Potentially sensitive data (disputed by '
'Norton)',
'financial_loss': '$11,000,000 (settlement amount)',
'identity_theft_risk': 'Potential risk (disputed by Norton)',
'legal_liabilities': 'Class-action lawsuit, regulatory scrutiny',
'operational_impact': 'Disrupted computer systems',
'systems_affected': 'Network storage devices, computer systems'},
'initial_access_broker': {'entry_point': 'Network storage devices'},
'investigation_status': 'Ongoing (settlement pending final approval)',
'motivation': 'Financial gain',
'post_incident_analysis': {'corrective_actions': 'Settlement includes medical '
'monitoring services, '
'expense reimbursements, and '
'cash payments',
'root_causes': 'Alleged negligence, inadequate '
'employee training, and failure to '
'meet industry cybersecurity '
'standards'},
'ransomware': {'ransom_demanded': 'Yes (via threatening fax)'},
'references': [{'source': 'Class-action lawsuit settlement announcement'}],
'regulatory_compliance': {'legal_actions': 'Class-action lawsuit',
'regulations_violated': 'Potential violations of '
'healthcare cybersecurity '
'standards (e.g., HIPAA)'},
'response': {'communication_strategy': 'Notification to potentially affected '
'individuals'},
'title': 'Norton Healthcare Ransomware Attack and Data Breach',
'type': 'Ransomware'}