PrivacySignal
Breach

Lucent Health Solutions to Pay Up to 1.95M to Settle Data Breach Litigation

HIPAA Journal · · US Federal · Data Breaches

Lucent Health Solutions, a Tennessee-based health plan administrator, has agreed to pay up to $1.95 million to settle a class action lawsuit stemming from a data breach. The settlement resolves litigation brought against the company over its handling of protected health information.

Why this matters: Health plan administrators sit in the middle of some of the most sensitive data that exists — diagnoses, claims, insurance details, employer information. When they get breached, the people affected rarely chose to share their data with them directly. It just flows there as part of how health coverage works. A $1.95 million settlement sounds significant, but divided across a class of affected people it rarely amounts to much. The real cost lands on the individuals whose health information is now out there permanently.

Who should care: Cybersecurity · Privacy officers · Administrators · Lawyers · Compliance · Healthcare professionals

This summary is AI-assisted and may contain errors. It is an original briefing to help you gauge significance quickly — not a reproduction of the source. Always read the linked original before relying on it. See our methodology.

Related stories

Breach
HIPAA Journal · · US Federal

May 2026 Healthcare Data Breach Report

According to data from the HHS Office for Civil Rights breach portal, 61 healthcare data breaches were reported in May 2026, as tracked in the HIPAA Journal's monthly analysis. The report reflects ongoing disclosure activity logged by the federal agency responsible for HIPAA enforcement.

Who should care: Cybersecurity · Privacy officers · Administrators · Healthcare professionals · Compliance

#breach#healthcare Read original →
Breach
Military Times · · US Federal

Nearly 12,000 military Tricare beneficiaries warned of data breach

TriWest Healthcare Alliance has notified nearly 12,000 military Tricare beneficiaries that their protected health information may have been exposed in a data breach. The notification indicates the incident was significant enough to trigger formal disclosure requirements under federal health privacy rules.

Who should care: Cybersecurity · Privacy officers · Administrators · Healthcare professionals · Compliance

#breach#healthcare Read original →
Breach
Microsoft Threat Intelligence · · International

Defending SaaS-based applications against ShinyHunters OAuth abuse

Microsoft Threat Intelligence identified threat actor activity with overlapping tradecraft commonly associated with ShinyHunters, including voice phishing (vishing), supply-chain compromise, and misconfigured guest access targeting SaaS-based applications. The post Defending SaaS-based applications against ShinyHunters OAuth abuse appeared first on Microsoft Security Blog.

Who should care: Cybersecurity · Privacy officers · Administrators

#breach#security Read original →