Omni Bridgeway backs Australian Clinical Labs data breach class action

Omni Bridgeway is funding a proposed class action against Australian Clinical Labs arising from a 2022 cyberattack that allegedly exposed sensitive customer information on the dark web, adding to the growing pipeline of funded privacy and data breach claims in Australia.

The proceeding has been filed by William Roberts Lawyers and relates to a breach affecting the Medlab Pathology business unit, which Australian Clinical Labs acquired in late 2021.

The case seeks compensation for affected customers of Australian Clinical Labs or Medlab who allegedly suffered distress, psychological injury, financial loss or material inconvenience following the incident.

Medlab’s systems contained personal and sensitive information including health records, passport details, Medicare information, credit card data, contact details and other financial information. The claim alleges that in or around February 2022, a threat actor known as the Quantum Group accessed Medlab’s systems and deployed ransomware. By June 16, 2022, roughly 86 gigabytes of data had allegedly been published on the dark web.

The litigation is expected to focus on whether adequate cybersecurity safeguards were in place, what obligations were owed to customers, and whether compensable harm flowed from the disclosure.