Fidelity Resolves 2024 Data Breach Lawsuit with $2.5 Million Settlement

*TL;DR: Fidelity agreed to a $2.5 million settlement and will offer payouts up to $5,000 per affected customer, ending a class‑action lawsuit over a 2024 data breach.

Context A third‑party intrusion into Fidelity Investments’ network from Aug. 17‑19, 2024 exposed names, Social Security numbers, account details and driver’s license data. Over 77,000 customers were impacted. The breach triggered a class‑action suit alleging negligence in protecting personal information.

Key Facts - Fidelity will pay a total of $2.5 million to settle the case, without admitting wrongdoing. - Eligible claimants can receive up to $5,000 if they document out‑of‑pocket losses linked to the breach. - Claimants who cannot prove losses may still receive a $100 payment, adjusted based on the total number of claims filed. - California residents qualify for an additional $50 under the state Consumer Privacy Act. - All claimants receive two years of identity‑theft protection and credit‑monitoring services. - The settlement will be finalized at a court hearing scheduled for July 9.

What It Means The settlement removes a legal cloud from Fidelity’s balance sheet, but the firm’s market perception remains tied to broader financial‑services trends. Fidelity’s parent, Fidelity National Information Services (ticker FIS), saw its stock rise 0.6 % after the announcement, keeping its market cap near $73 billion and the S&P 500 index flat. The modest price move suggests investors view the payout as a contained expense rather than a systemic risk.

For consumers, the payout structure emphasizes documented losses, aligning compensation with actual financial harm. The $100 baseline payment ensures that even claimants without verifiable losses receive some restitution, a practice common in data‑breach settlements.

Regulators are likely to scrutinize the breach’s root cause, especially the three‑day window that allowed unauthorized access. Fidelity’s decision to provide free identity‑theft protection for two years may set a benchmark for future settlements in the sector.

Looking Ahead Watch for the July 9 approval hearing and any subsequent regulatory guidance that could tighten cybersecurity standards for brokerage firms. The outcome may influence settlement terms in upcoming data‑privacy cases across the financial industry.