What is a data breach settlement? A data breach settlement is a class action resolution that compensates consumers whose personal information was exposed in a corporate data breach. Most settlements offer a flat cash payment with no proof of damages required, plus a separate higher payout tier for documented losses like fraud or identity theft expenses.

Settlements pay slowly

Grab $15 in 60 seconds while you file claims

Breach settlements take 3 to 12 months to actually pay. BigCash drops $15 in your PayPal as soon as you sign up. Real money, no proof, same-day cashout at $1 minimum.

Claim $15 Bonus →
On This Page

Why 2026 Is a Record Year for Breach Settlements

Data breaches became a near-weekly news cycle starting around 2017, with major incidents at Equifax, Target, Yahoo, and Marriott. The litigation pipeline takes 3 to 6 years to mature, which means the major breaches of 2020 to 2023 are now reaching settlement stage in 2025 and 2026.

The result: more open data breach class action settlements than at any point in U.S. history. The IBM Cost of a Data Breach Report 2025 estimated the average corporate breach costs $4.45 million in damages and fines. Plaintiffs' attorneys have responded by aggressively pursuing class actions, and most defendants settle rather than litigate at trial.

If you've received a notification letter saying "your information may have been involved in a security incident," there's a meaningful chance there's a settlement open or coming. Most pay between $25 and $250 in the flat-rate tier with no proof required.

Currently Active Data Breach Settlements

Every settlement below has an open claim window as of May 2026. Verify the deadline on the official site before filing. Most pay a flat tier with no proof required (~$25 to $200) plus an enhanced tier for documented losses ($1,000 to $25,000+).

LastPass Data Breach Settlement ($24.45M)

Crypto Losses Eligible

The 2022 LastPass vault breach exposed encrypted password vaults of ~25 million users. Many resulted in cryptocurrency theft. Flat tier pays $25 (plus $100 extra for California residents). Enhanced tier pays $300 for ordinary losses, $10,000 for extraordinary, and up to $900,000 for documented crypto theft tied to the breach.

$25 flat · up to $900K crypto Deadline: Jul 2, 2026 · File Claim

Comcast / Xfinity Data Breach ($117.5M)

Largest Active

A 2023 cyberattack exposed personal data of 31.6 million Xfinity customers. Flat ~$50 payment for all class members with no proof required, plus up to $10,000 for documented identity theft losses. Includes 3 years of CyEx Financial Shield identity monitoring for all class members.

$50 flat · up to $10,000 Deadline: Aug 14, 2026 · File Claim
$15 instant

BigCash — cash out at $1

The lowest cashout I have found anywhere. Test apps you would download anyway, get paid in PayPal in 30 minutes.

Claim $15 → $10 instant

Freecash — pays same-day

Sign up and get $10 to your account. Then earn cash testing apps, playing games, and doing quick tasks. PayPal cashout at $1.

Get $10 →

PowerSchool Naviance Settlement ($17.25M)

Students & Parents

Class action over alleged interception of confidential student communications via PowerSchool's Naviance platform. Covers anyone who used Naviance between 2021 and 2026. Estimated 60 million+ students, parents, and counselors affected. Cash payment is pro-rata based on claim volume.

Pro-rata cash payment Deadline: Jul 27, 2026 · File Claim

Patelco Credit Union Data Breach ($7.25M)

Financial

2024 ransomware attack on Patelco Credit Union exposed personal and financial data of ~1 million members. Flat tier pays around $100 (California residents get ~$200). Enhanced tier pays up to $5,000 for documented losses with receipts or affidavits.

$100-$200 flat · up to $5,000 Deadline: Jun 11, 2026 · File Claim

Union Bank and Trust ($2.39M)

MOVEit-Related

Union Bank and Trust was affected by the 2023 MOVEit Transfer mass breach. The settlement provides $100 flat payment with no proof, plus up to $12,500 for documented losses and 2 years of credit monitoring.

$100 flat · up to $12,500 Deadline: Jul 21, 2026 · File via directory

Anne Arundel Dermatology ($2.4M)

Healthcare

Patient data breach affecting residents of Virginia, North Carolina, South Carolina, and Maryland. ~$100 flat payment with no proof; up to $5,000 for documented identity theft expenses.

$100 flat · up to $5,000 Deadline: Jul 8, 2026 · File Claim

Cardiovascular Consultants ($3.85M)

Healthcare

September 2023 breach at the Arizona-based cardiology practice. Pro-rata cash payment around $75 per claimant, plus enhanced tier of up to $5,000 for documented losses.

$75 pro-rata · up to $5,000 Deadline: Jul 1, 2026 · File Claim

Bell Ambulance Data Breach ($2M)

Healthcare (WI/IL)

February 2025 breach affecting Wisconsin and Illinois patients. ~$90 flat payment with no proof; up to $5,000 for documented losses.

$90 flat · up to $5,000 Deadline: Jun 29, 2026 · File Claim

Krispy Kreme Data Breach ($1.6M)

Retail

November 2024 cyber incident exposed customer data. $75 flat payment with no proof. Enhanced tier pays up to $3,500 for documented out-of-pocket losses.

$75 flat · up to $3,500 Deadline: Jun 22, 2026 · File Claim

Alera Group ($2M)

Insurance Brokerage

August 2024 cyberattack on insurance brokerage Alera Group. ~$50 flat payment with no proof; up to $3,500 for documented losses.

$50 flat · up to $3,500 Deadline: Jun 29, 2026 · File Claim

CSC ServiceWorks (Lost Time)

Long-Duration Breach

Months-long data breach affecting ~35,000 individuals. Enhanced tier pays up to $5,000 for documented losses plus reimbursement for up to 4 hours of lost time at $25/hour spent dealing with the breach.

Up to $5,000 + 4hr lost time Deadline: Jul 2, 2026 · File Claim

Dove Healthcare Management (~$150K)

Healthcare

July 2024 cyberattack on Dove Healthcare Management Services. $50 flat payment, up to $3,000 for documented losses, plus reimbursement for up to 3 hours of lost time at $20/hour spent dealing with the breach.

$50 flat · up to $3,000 + lost time Deadline: Jul 7, 2026 · File via directory

Oglethorpe Inc. Data Breach ($350K)

Healthcare

2025 data breach at Oglethorpe Inc. $75 flat payment with no proof; up to $2,500 for documented losses.

$75 flat · up to $2,500 Deadline: Jul 8, 2026 · File via directory

Endue Software ($260K)

SaaS Breach

SaaS provider breach affecting users of Endue Software. $65 flat payment, plus enhanced tier for documented losses.

$65 flat Deadline: Jun 30, 2026 · File via directory
Want a settlement-sized payout today? Branded Surveys runs high-value tasks that pay $100+ each. One task can equal a full flat-tier breach settlement payout, paid out same-day. Try Branded →

Closing in the Next 2 Weeks

These settlements have deadlines in late May 2026. File now if you qualify.

Norton Healthcare Data Breach ($11M)

Urgent

May 2023 attack on Norton Healthcare exposed SSNs and medical records of 2.5 million patients. Up to $80 for lost time spent dealing with the breach (variable based on hours), plus up to $2,500 for documented identity-theft losses.

Up to $80 lost time · up to $2,500 enhanced Deadline: May 18, 2026 · File Claim

Ingram Micro Americas ($350K)

Urgent

IT distributor data breach. Pro-rata cash payment from limited fund. Enhanced tier up to $1,500 for documented losses.

Pro-rata · up to $1,500 Deadline: May 19, 2026 · File via directory

Myers Auto Group ($15K Fund)

Urgent

Auto dealership group data breach. Small settlement fund of just $15,000 split pro-rata across approximately 4,229 class members. Expect a small payout (likely under $5 per claimant). Worth filing only if it takes you under a minute.

Pro-rata from $15K fund Deadline: May 26, 2026 · File via directory

General Physician P.C. ($2.5M)

Urgent

Medical practice data breach in New York. Tiered payout with flat tier and documented-loss tier.

Tiered · up to $5,000+ Deadline: May 27, 2026 · File via directory

Proliance Surgeons ($4.45M)

Urgent

Washington state-based surgical practice data breach. Tiered payout.

Tiered · up to $5,000+ Deadline: May 28, 2026 · File via directory

Pending Settlements (Watch This Space)

Major active class actions where settlements are pending or expected. If you received a notification letter from any of these, monitor the case for upcoming claim windows.

Change Healthcare / UnitedHealth Breach

Largest Pending

February 2024 ransomware breach exposed medical and personal data of 192.7 million Americans, one of the largest healthcare breaches in U.S. history. Federal MDL in District of Minnesota. Class certification rulings and early settlement talks expected in 2026 or early 2027. Settlements projected to reach billions.

TBD (likely $50 - $25K+) Settlement TBD · Get notified

PowerSchool Ransomware Breach (60M+ Users)

Active Litigation

December 2024 ransomware exposed 60M+ students, teachers, and parents (separate from the Naviance settlement above). Federal MDL in S.D. California before Judge Roger Benitez. Track One Plaintiffs survived motions to dismiss in March 2026. Private equity owner Bain Capital potentially on the hook.

TBD Settlement TBD · Get notified

Oracle Health (Cerner Migration Breach)

Healthcare

January 22, 2025 breach of legacy Cerner migration servers; up to 80 hospitals affected. Multiple class actions filed alleging Oracle failed to notify affected patients and lacked basic security controls. Litigation in early stages.

TBD Settlement TBD · Get notified

Ascension Health (5M+ Affected)

Healthcare

May 2024 ransomware attack on one of the largest U.S. nonprofit healthcare systems. Federal court allowed negligence and consumer-protection claims to proceed. No settlement yet.

TBD Settlement TBD · Get notified

Ticketmaster / Live Nation (Snowflake MDL)

Active Litigation

Part of the Snowflake-related breach MDL in District of Montana. Ticketmaster (560M user records) and Live Nation continue to contest the case while other Snowflake defendants (Neiman Marcus, Advance Auto Parts) have already settled.

TBD Settlement TBD · Get notified

Recently Closed Settlements

If you received a notification but missed the deadline, payments from these closed settlements are still being distributed. Check the official site for status.

How to Find Breach Settlements You Qualify For

Three things to do regularly if you want to stay on top of breach settlements:

  1. Check haveibeenpwned.com โ€” free service that tells you which breaches have exposed your email. Cross-reference matches with active class action settlements.
  2. Save every breach notification letter you receive โ€” companies are legally required to notify affected consumers. The letter is usually required when you file a claim.
  3. Bookmark our open settlements directory โ€” updated weekly with every active class action including breaches, false advertising, and product defects.

How to Know If You're Affected by a Breach

Three signals you may be eligible to claim:

  1. You received a notification letter. Companies are required by state law to notify affected consumers in writing or by email when their data is exposed. If you received one, save it — it's typically required when you file.
  2. You were a customer or patient during the affected period. Each settlement defines a class window. If your service usage overlaps with that window, you likely qualify even without a notice letter.
  3. Your information appeared in a public breach database. Sites like haveibeenpwned.com tell you which breaches have exposed your email address. Cross-reference matches with active class action settlements.

Getting Cash While You Wait on Settlements

BigCash — $15 free, same-day payout

Class action settlements take 3 to 12 months to actually pay after the claim deadline closes. While you wait, BigCash drops $15 in your PayPal as soon as you sign up. PayPal cashout at $1 minimum.

$15 instant bonus
Claim $15 on BigCash →

How to File a Data Breach Claim (Step by Step)

  1. Visit the official settlement website. Listed on every breach notification letter. Make sure it's the official .com or .net the court approved — not a third-party site charging fees.
  2. Determine your tier. Most settlements offer a flat-rate tier ($25 to $250, no proof needed) and an enhanced tier with documented losses ($1,000 to $25,000).
  3. Fill out the claim form. You'll need name, address, last four of SSN, and confirmation you were a customer or patient during the affected window.
  4. Submit by the deadline. Claim windows are typically 6 to 12 months from settlement approval. Miss the deadline and you forfeit your share.
  5. Wait. Payments typically arrive 3 to 12 months after the deadline closes.

No-Proof vs. Documented-Loss Tiers

Almost every data breach settlement has two payout structures:

Flat tier (no proof needed)

You confirm you were a customer during the affected period. The settlement pays a flat amount per claimant — usually $25 to $250. This is the right path for 90%+ of claimants. It takes 5 minutes to file.

Enhanced tier (proof of damages)

You provide documentation of actual losses tied to the breach: unauthorized charges, identity theft expenses, time spent freezing credit, credit monitoring fees, lost wages from disputing fraud. The settlement pays up to $5,000 to $25,000 depending on the case.

If you have any documented losses, file the enhanced tier — the difference in payout is typically 10x to 100x the flat tier. The downside is the documentation requirement (receipts, fraud affidavits, etc.).

Tasks That Pay More Than the Settlement

Branded — tasks pay $100+

Most flat-tier breach settlements pay $25 to $250 once they close out (months from now). Branded runs high-value tasks that pay $100+ each, paid out today. One Branded task can match a full flat-tier settlement payout.

$100+ per task
Try Branded →

Avoiding Data Breach Settlement Scams

The data breach settlement space attracts scams. Red flags:

Still here? Grab $15 before you go. While you wait months for settlement checks, BigCash pays you today. PayPal cashout at $1, no proof, 60 seconds to sign up. Claim $15 →

Frequently Asked Questions

Do data breach settlements require proof?
Most settlements offer a flat-rate tier ($25 to $250) that requires NO proof. You just confirm you were a customer during the affected period. Higher-value enhanced tiers ($1,000 to $25,000) require documentation of actual losses.
How much can I get from a data breach settlement?
Flat-rate payouts are typically $25 to $250 per person. Enhanced tier (with documented losses) ranges from $1,000 to $25,000. The Comcast settlement pays up to $10,000 in the enhanced tier. Norton Healthcare pays up to $5,000.
How long does it take to receive payment?
Typically 3 to 12 months after the claim deadline closes. The court has to approve the final settlement, the administrator processes all claims, then payments are mailed. The whole cycle from filing to check averages 6 to 9 months.
Can I claim multiple breach settlements?
Yes. You can file a claim for every settlement you're eligible for. Each one is independent. The IRS treats settlement payments as taxable income if they exceed certain thresholds, but small flat-rate payments rarely trigger that.
What if I didn't receive a notification letter?
Not receiving a letter doesn't disqualify you. The class is defined by who was a customer or patient during the affected period, not who received a letter. Address changes mean many class members never got the notice. Check the settlement website for eligibility criteria.
Is the settlement website legit?
The court-approved website is always linked in the original breach notification letter and in the published court documents (PACER, state court websites). Avoid lookalike domains. The legitimate site usually ends in .com or .net and never asks for full SSN.
Do I need a lawyer to file?
No. Class action settlements are designed for individuals to file directly. The official claim form is short (5 to 10 minutes) and free. You only need a lawyer if you have unusual circumstances or are filing the enhanced tier with significant documented losses.

Side gig money while your claim processes

A little-known app testing gig โ€” earn real money from your phone

Residents are earning real money by playing mobile games, taking surveys, and testing products. Sign up for free and start getting paid right away. Work anytime, anywhere, at your own pace. Fast PayPal payouts.

Free to join · PayPal payouts
Sign Up for Testerup →