2. $65 million – Doe, et al. v. Lehigh Valley Health Network Inc ., Case No. 23-CV-1149 (Penn. Commw. Ct. Nov. 15, 2024) (final settlement approval granted in a class action to resolve claims alleging that following a data breach by the hacking group known as ALPHV or BlackCat, the hackers posted patients’ data online after the hospital refused to pay the hackers’ ransom demands). 3. $52 million – In The Matter Of Marriott International Inc ., Case No. 1923022 (F.T.C. Oct. 9, 2024) (the company agreed to pay nearly every U.S. state and increase its data security practices to resolve parallel investigations by state attorneys general and the Federal Trade Commission over a massive data breach at the hotel’s Starwood-branded properties). 4. $32.5 million – Baker, et al. v. Park Mobile LLC , Case No. 21-CV-2182 (N.D. Ga. Nov. 5, 2024) (preliminary settlement approval granted in a class action to resolve claims alleging that the company’s data was subject to a breach in which an unknown actor gained unauthorized access to the personal information of ParkMobile App users). 5. $30 million – In Re 23andMe Inc. Customer Data Security Breach Litigation , Case No. 24-MD-3098 (N.D. Cal. Dec. 4, 2024) (preliminary settlement approval granted in a multidistrict class action litigation on behalf of more than 6 million customers whose personal data was stolen and, in some cases, leaked onto the dark web following a data breach). 6. $21 million – In Re Arthur J. Gallagher Data Breach Litigation , Case No. 22-CV-137 (N.D. Ill. Sept. 26, 2024) (preliminary settlement approval granted to resolve several lawsuits consolidated in Illinois alleging that the company failed to protect more than 3 million customers from a data breach that compromised their personally identifiable information). 7. $15 million – Salinas, et al. v. Block Inc., Case No. 22-CV-4823 (N.D. Cal. June 3, 2024) (preliminary settlement approval granted in a class action to resolve claims that a December 2021 data breach at the companies exposed personally identifiable information, account numbers and trading activity of 8.2 million people). 8. $10 million – In Re MOVEit Customer Data Security Breach Litigation , Case No. 23-MD-3083 (D. Mass. Sept. 5, 2024) (preliminary settlement approval granted in a class action to resolve claims that lax security practices by National Student Clearinghouse and Progress Software allowed ransomware cybercriminals to steal the Social Security numbers and personal information of about 1.5 million people). 9. $8.9 million – Tracy, et al. v. Elekta Inc., Case No. 21-CV-2851 (N.D. Ga. Aug. 28, 2024) (preliminary settlement approval granted in a class action to resolve claims alleging that the company failed to prevent a 2021 data breach that compromised sensitive patient information, including genetic data). 10. $8.8 million – In Re MCG Health Data Security Issue Litigation , Case No. 22-CV-849 (W.D. Wash. Oct. 9, 2024) (final settlement approval granted in a class action to provide expense reimbursement and credit monitoring to patients whose personal information was compromised in a 2020 data breach).
15
© Duane Morris LLP 2025
Duane Morris Data Breach Class Action Review – 2025
Made with FlippingBook - professional solution for displaying marketing and sales documents online