Oklahoma Spine Hospital $1.1M Data Breach Settlement
Individuals who received notice from Oklahoma Spine Hospital about the July 2024 data breach, may be eligible to submit a claim for up to $10,000 from a class action settlement. The settlement has approximately 38,945 class members.
Oklahoma Spine Hospital LLC has agreed to pay $1.10 million to settle a class action lawsuit regarding a data breach that potentially exposed sensitive personal, financial and protected health information.
Who is eligible for a data breach payout?
Class members must meet the following criteria:
They were sent a Notice of Data Breach Letter from Oklahoma Spine Hospital regarding the cybersecurity incident discovered on or around July 1, 2024.
The notice informed them that that their personal information may have been impacted by the breach.
How much will the settlement payment be?
Class members can select one or more of the following benefits:
Credit monitoring services: All class members can elect to receive three years of credit monitoring services, which includes $1 million in identity theft insurance, real-time credit file monitoring, dark web scanning, public records monitoring and access to fraud resolution agents if suspicious activity is detected.
All class members can elect to receive three years of credit monitoring services, which includes $1 million in identity theft insurance, real-time credit file monitoring, dark web scanning, public records monitoring and access to fraud
Source: https://www.claimdepot.com/settlements/osh-data-incident-settlement
Oklahoma Spine Hospital cybersecurity rating report: https://www.rankiteo.com/company/oklahoma-spine-hospital
"id": "OKL1764865545",
"linkid": "oklahoma-spine-hospital",
"type": "Breach",
"date": "7/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '38,945',
'industry': 'Healthcare',
'location': 'Oklahoma, USA',
'name': 'Oklahoma Spine Hospital LLC',
'size': None,
'type': 'Healthcare Provider'}],
'customer_advisories': 'Notice of Data Breach Letter sent to '
'affected individuals',
'data_breach': {'data_encryption': None,
'data_exfiltration': None,
'file_types_exposed': None,
'number_of_records_exposed': '38,945',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal '
'information',
'Financial '
'information',
'Protected health '
'information']},
'date_detected': '2024-07-01',
'description': 'Oklahoma Spine Hospital LLC has agreed to pay '
'$1.10 million to settle a class action lawsuit '
'regarding a data breach that potentially exposed '
'sensitive personal, financial, and protected '
'health information.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': 'Sensitive personal, financial, '
'and protected health information',
'downtime': None,
'financial_loss': '$1,100,000',
'identity_theft_risk': 'High',
'legal_liabilities': 'Class action lawsuit settlement',
'operational_impact': None,
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': None},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': None,
'source': 'Class action settlement notice',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': 'Class action lawsuit',
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Notice of Data Breach '
'Letter sent to affected '
'individuals',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': None,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': None},
'title': 'Oklahoma Spine Hospital $1.1M Data Breach Settlement',
'type': 'Data Breach'}