Gallup, N.M.-based Rehoboth McKinley Christian Health Care Services has agreed to pay victims of a 2021 data breach up to $4,000 each, according to a recent federal court filing.
In February 2021, the health system discovered a cybersecurity incident where, in the weeks prior, hackers stole the data of 191,009 individuals. The data included Social Security numbers, driver's license numbers, and medical and financial information.
The proposed class-action settlement, which a judge approved Jan. 9, offers up to $3,500 for "extraordinary losses" and reimbursement for out-of-pocket expenses and lost time up to $500, as well as two years of free credit monitoring services. Rehoboth McKinley Christian also agreed to cybersecurity improvements.
A final approval hearing for the settlement is set for May 24. The news was first reported Jan. 10 by Bloomberg Law.