in Newswire Published on June 20, 2024

Data Breach Lawsuit Filed Over June 2023 SysInformation Healthcare Services Cyberattack

by Kelsey McCroskey

View Comments

Johnson v. SysInformation Healthcare Services, LLC

Filed: June 6, 2024 § 1:24-cv-00623

Read Complaint

SysInformation Healthcare Services, which does business as EqualizeRCM and 1st Credentialing, faces a class action over a June 2023 data breach.

Defendant(s)

SysInformation Healthcare Services, LLC

Law(s)

State(s)

Texas

Categories

Medical/Health Privacy Data Breach

SysInformation Healthcare Services, which does business as EqualizeRCM and 1st Credentialing, faces a proposed class action lawsuit over a June 2023 data breach.

Want to stay in the loop on class actions that matter to you? Sign up for ClassAction.org’s free weekly newsletter here.

The 43-page SysInformation Healthcare Services data breach lawsuit contends that lax cybersecurity on the part of the Texas-based company, which provides revenue cycle and billing services to healthcare clients, caused the unauthorized disclosure of current and former patients’ names, dates of birth and medical histories or treatment information.

After SysInformation discovered unusual activity in its computer systems, a subsequent investigation determined that an unauthorized third party had gained access to the network between June 3 and June 18, 2023 and obtained certain files stored therein, the data breach lawsuit describes.

The case alleges that the company did not implement the proper data security necessary to protect the highly sensitive information of its clients’ patients, such as encrypting or deleting the data when it was no longer needed.

According to the complaint, the incident was wholly preventable and even “foreseeable” given the frequency of cyberattacks in the healthcare industry in recent years. The filing argues that, as such, SysInformation should have understood the risks of a data breach and taken commensurate measures to protect the information in its care.

Thanks to the company’s alleged negligence, victims like the plaintiff—a former patient of one of SysInformation’s clients—now face an ongoing threat of identity theft, fraud and other unlawful schemes, the suit emphasizes.

Moreover, the case claims that SysInformation’s notice letter was untimely and omitted critical details about the incident, without which victims’ ability to mitigate the consequences of the breach is severely hampered.

The lawsuit looks to represent anyone in the United States whose private information was accessed and/or acquired by an unauthorized third party as a result of the SysInformation data breach, including those who were sent notice of the incident.

Are you owed unclaimed settlement money? Check out our class action rebates page full of open class action settlements.

Case Spotlight

Hair Relaxer Lawsuits

Women who developed ovarian or uterine cancer after using hair relaxers such as Dark & Lovely and Motions may now have an opportunity to take legal action.

Read more here: Hair Relaxer Cancer Lawsuits

ClassAction.org Newsletter

Stay Current

Sign Up For
Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This browser does not support PDFs. Please download the PDF to view it: Download PDF.
Open Document
Last Updated on June 20, 2024 — 10:36 AM

Kelsey McCroskey

kelsey@classaction.org

Kelsey works primarily on ClassAction.org’s newswire, reporting on cases as they happen.

About ClassAction.org

ClassAction.org is a group of online professionals (designers, developers and writers) with years of experience in the legal industry.

Learn More

Before commenting, please review our comment policy.