A federal judge has dismissed a proposed class action against New Jersey-based Accu Reference Medical Lab, ruling that the plaintiff failed to establish standing and adequately state her claims stemming from a 2025 ransomware attack.
Newark, NJ – A federal judge has dismissed a proposed class action lawsuit against Accu Reference Medical Lab, LLC, finding that the plaintiff did not sufficiently demonstrate that she suffered a concrete injury as a result of a data breach allegedly carried out by the Qilin ransomware group.
In an opinion issued June 24, U.S. District Judge Susan D. Wigenton granted Accu Reference Medical Lab’s motion to dismiss the amended complaint filed by plaintiff Danielle Lips.
Lawsuit challenged lab’s cybersecurity practices
According to the complaint, Lips underwent diagnostic testing through an Arizona affiliate of Accu Reference Medical Lab and provided personal and protected health information, including her name, date of birth, Social Security number and insurance information.
The lawsuit alleged that on July 1, 2025, the Qilin ransomware group stole Accu’s data and posted screenshots containing patients’ personally identifiable information and protected health information on the dark web. The complaint claimed the breach exposed patients to an increased risk of identity theft and financial fraud because of the laboratory’s alleged failure to maintain adequate cybersecurity safeguards.
Lips sought to represent a nationwide class, asserting claims of negligence and unjust enrichment while also requesting declaratory and injunctive relief.
Court grants motion to dismiss
Judge Wigenton granted Accu’s motion to dismiss under Federal Rules of Civil Procedure 12(b)(1) and 12(b)(6), concluding the amended complaint should be dismissed.
The opinion found the plaintiff had not adequately established the legal requirements necessary to proceed with the case. The dismissal means the proposed class action will not move forward in its current form.
The published opinion does not determine whether the alleged cyberattack occurred. Instead, it addresses whether the plaintiff’s allegations were legally sufficient to sustain the lawsuit in federal court.
Key Points
- A federal judge dismissed a proposed class action against Accu Reference Medical Lab over an alleged 2025 data breach.
- The lawsuit claimed a ransomware attack exposed patients’ personal and medical information.
- The court granted the laboratory’s motion to dismiss, finding the plaintiff’s claims were legally insufficient.