On Feb. 8, the United States District Court for the District of Arizona granted final approval[1] of a nationwide $3.75 million class action lawsuit settlement against Magellan Health Inc. related to a 2020 phishing incident.[2] Magellan is a managed care health care company that has a network of more than 110,000 providers. Magellan works with employers and government entities to provide health care solutions for individuals. While the breach affected approximately 1,013,900 individuals,[3] 963,450 individuals were notified as class members received a data incident letter stating that an unknown, unauthorized third party may have accessed their information by as a result of a data security incident.[4] The class includes current and former Magellan Health employees along with consumers whose information was involved in the data breach.