« Information Technology
  

Dameron Hospital Association Settles Cyberattack Lawsuit for $650,000

While Dameron denies wrongdoing or liability, it has chosen to settle the lawsuit on a class-wide basis.

By Jeff Wardon, Jr., Assistant Editor


Cyberattacks are costly to healthcare organizations. The amounts demanded from ransomware can range from $1,600 to $10 million, as found in a report from Comparitech. In addition, the attacks can cost upward of $77.5 billion in just downtime, the report found. 

The number only increases when adding the potential legal costs, something that both CommonSpirit Health, PIH Health and Dameron Hospital Association saw following the attacks they experienced. 

In December 2023, a cyberattack orchestrated by the hacker group RansomHouse managed to break through the cyber defenses of Dameron, Privacy Affairs reports. The hackers claimed to have stolen over 480 gigabytes of data and demanded a ransom from Dameron or they would delete the information. 

Related: 3 Critical Cyber Threats to Healthcare Facilities in 2025

A class-action lawsuit has since been filed against Dameron, alleging that the attack exposed the personal and health information of over 260,000 individuals, according to Claim Depot. The organization has agreed to a proposed $650,000 class action settlement. Those affected by the breach, as identified by Dameron, may be eligible for a payment.  

Defending against cyberattacks is crucial to avoid incurred costs from operational downtime or lawsuits. The MIT Cybersecurity Clinic recommends five actions for healthcare organizations to take to protect themselves: 

  1. Identify the most important computer systems and data sets. Ensure that there are readily available backups that can be called upon right away if necessary. 
  2. IT staff can segment the existing systems so that attackers that manage to break through can’t gain entry to the entire system at once. 
  3. Contact suppliers, partners and others – primarily those who regularly use the organization’s online systems – to ensure partners have taken action to educate their own staff on proper cyber hygiene. 
  4. Ensure that all security patches supplied by software providers are applied as soon as possible. 
  5. Communicate regularly with staff to reinforce key points of the organization’s cybersecurity policies. 

Jeff Wardon, Jr., is the assistant editor of the facilities market. 



March 5, 2025


Topic Area: Information Technology , Security

Recent Posts

Probiotic Cleaning: A Complementary Strategy for Safer Hospital Floors

Managers seeking more resilient approaches to environmental hygiene are turning to probiotic systems to supplement traditional disinfection.

VITAS Healthcare Breaks Ground on New Inpatient Hospice Center in Florida

The 14,000-square-foot VITAS inpatient hospice center will open in 2027 and serve 500+ patients annually.

Mile Bluff Medical Center Disrupted by Data Security Event

While some services experienced limited and temporary interruptions, the impact has been narrow in scope.

The Proper Way to Use Cleaning Carts

Environmental services use cleaning carts every day, but they are often overlooked. Keeping them clean and properly stocked is key to preventing infection in healthcare facilities.

JPS Health Network Breaks Ground on New Hospital

The project includes construction of a new inpatient hospital and expansion of the existing Pavilion.

 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 
 
 
 

Healthcare Facilities Today membership includes free email newsletters from our facility-industry brands.

Facebook   Twitter   LinkedIn   Posts

Copyright © 2023 TradePress. All rights reserved.