Shields Health Care Group Hit with Class Action Over March 2022 Data Breach
by Erin Shaak
Komar v. Shields Health Care Group, Inc.
Filed: July 8, 2022 ◆§ 1:22-cv-11109
Shields Health Care Group faces a class action lawsuit over a March 2022 data breach in which two million patients’ information was reportedly compromised.
Shields Health Care Group, Inc. faces a proposed class action lawsuit over a March 2022 data breach in which the personal and protected health information of roughly two million current and former patients was reportedly compromised.
According to the 22-page case, Shields Health Care Group, who provides management and imaging services on behalf of healthcare facilities in the New England region, has failed to implement adequate cybersecurity protocols and procedures. As a result, an unauthorized actor was able to gain access to the company’s systems between March 7 and March 21, 2022, the suit says.
The lawsuit states that current and former patients’ names; Social Security and medical record numbers; dates of birth; home addresses; provider, diagnosis, billing and insurance information; patient IDs; and other medical and treatment details were compromised in the breach.
The case claims that those whose information was exposed now face a “substantially increased and certainly impending risk” of identity theft as a result of the data breach and may need to take measures to mitigate that risk for the rest of their lives.
According to the suit, Shields first became aware of “suspicious activity” on its network in late March 2022 yet failed to send notice to data breach victims within 60 days as required by law. Per the case, Shields released around June 7 a data breach notice in which the company admitted that an unauthorized actor gained access to its system between March 7 and March 21 of this year.
The lawsuit further argues that Shields’ disclosures were not only delayed but “vague and evasive,” leaving victims with “incomplete information regarding the true nature and extent of the data breach.” Moreover, although Shields reportedly claimed there is no evidence to indicate that the breach was an attempt to commit fraud, the suit contends that “it would be naïve to believe the cybercriminals did not purposefully steal sensitive information with a specific intent to use it or sell it to others who will.”
The lawsuit says that consumers whose information was compromised have suffered emotional distress, not to mention an increased risk of identity theft and fraud, as a result of the breach.
The case looks to cover anyone in the U.S. whose personally identifiable and protected health information was compromised in the Shields Health Care Group data breach that occurred around March 7 to March 21, 2022.
Get class action lawsuit news sent to your inbox – sign up for ClassAction.org’s newsletter here.
Video Game Addiction Lawsuits
If your child suffers from video game addiction — including Fortnite addiction or Roblox addiction — you may be able to take legal action. Gamers 18 to 22 may also qualify.
Learn more:Video Game Addiction Lawsuit
Depo-Provera Lawsuits
Anyone who received Depo-Provera or Depo-Provera SubQ injections and has been diagnosed with meningioma, a type of brain tumor, may be able to take legal action.
Read more: Depo-Provera Lawsuit
How Do I Join a Class Action Lawsuit?
Did you know there's usually nothing you need to do to join, sign up for, or add your name to new class action lawsuits when they're initially filed?
Read more here: How Do I Join a Class Action Lawsuit?
Stay Current
Sign Up For
Our Newsletter
New cases and investigations, settlement deadlines, and news straight to your inbox.
Before commenting, please review our comment policy.