C&T has filed a class action lawsuit against Arizona-based health services provider Banner Health (“Banner”) in the wake of recent reports that Banner’s computer servers experienced a massive cyberattack and data breach which began June 17, 2016 and reportedly ended on July 7, 2016. On August 3, 2016, Banner issued a public statement acknowledging the cyberattack and the compromise of patient and customer information. Specifically, the attack targeted credit card information and more sensitive personal , financial, and medical information – including names, birthdates, addresses, clinical information, Social Security numbers, and other information – of approximately 3.7 million Banner patients, health plan members (and beneficiaries), food and beverage customers, and healthcare providers.
The complaint filed by C&T alleges that Banner failed to take appropriate steps to protect the sensitive medical and non-public information entrusted to it in violation of numerous laws, including state consumer protection laws. This data breach is the latest in a wave of large data breaches over the past couple of years. The Banner data breach is reportedly the largest of 2016 to date.
Banner has reportedly begun sending letters out to the approximately 3.7 million individuals who were affected by this data breach providing notification of the breach and loosely identifying type of information that may have been stolen or disclosed during the breach. Although Banner is offering one year of free credit monitoring services to affected persons, the impact of this type of data breach and the risk of fraud, including identity theft, can extend well beyond one year. The lawsuit filed by C&T alleges that the monitoring being offered by Banner is inadequate, and seeks additional credit monitoring and other relief.
If you have received a letter from Banner relating to this data breach and are interested in discussing the lawsuit, please contact the attorneys listed below.