Kansas City, Mo.-based Sunflower Medical Group is facing a class-action lawsuit for allegedly failing to protect patient and employee data, resulting in a cybersecurity breach that exposed sensitive, personally identifiable information and protected health information, according to court documents accessed by Becker’s.
What happened?
…
- The breach occurred Dec. 15, 2024, and impacted 220,968 individuals, exposing names, Social Security numbers, driver’s license information, dates of birth, medical records and health insurance details.
- The lawsuit alleges that Sunflower Medical Group did not discover the breach until Jan. 7, 2025, and only began notifying affected individuals March 7, two months later.
- The lawsuit claims Sunflower violated…