A healthcare management firm from Georgia, ApolloMD, is set to pay $4.02 million to resolve a class action lawsuit related to a data breach that affected numerous individuals. The lawsuit stems from a hacking incident that compromised sensitive personal and medical information.

In May 2025, the company detected unusual activity on its IT network. Following an investigation, it was revealed that an unauthorized third party may have accessed sensitive files containing patient details, including names, birth dates, addresses, treatment information, and Social Security numbers. This breach has raised serious concerns regarding the company’s security measures.

Notifications regarding the breach were sent to the affected parties in September 2025 and March 2026. Those impacted have until September 30 to file a claim for compensation. Members of the settlement class can receive up to $5,000 for documented losses due to the breach, or alternatively, a cash payment of $75 without needing proof of losses. August 31 has been set as the deadline to raise objections to the settlement, with a final court hearing scheduled for October 5.

ApolloMD has opted to settle the case without acknowledging any wrongdoing. The fallout from this incident highlights growing concerns about data security in the healthcare sector, prompting discussions about the adequacy of protective measures in place.

This article is for informational purposes only and should not be considered financial advice.