{"schema_version":"secwatch.filing_event.v1","accession":"0001428336-24-000055","form_type":"8-K","ticker":"HQY","cik":"0001428336","company_name":"HEALTHEQUITY, INC.","filed_at":"2024-07-02T23:59:59+00:00","discovered_at":"2026-05-14T18:03:13.029448+00:00","generated_at":"2026-05-31T23:44:47.226633+00:00","sec_items":["8.01","9.01"],"event_type":"cyber","sentiment":"negative","materiality_score":0.65,"calibrated_materiality_score":0.65,"confidence":"high","headline":"HealthEquity discloses data breach via compromised business partner account; PII/PHI accessed","bullets":["A third party compromised a business partner's account, accessing personally identifiable and protected health information of some members.","Investigation concluded some information was transferred off the partner's systems; no malicious code found on HealthEquity systems.","No interruption to systems, services, or business operations; company is notifying partners, clients, and affected members.","Company expects to offer complimentary credit monitoring and identity restoration; holds adequate cybersecurity insurance.","Company currently believes the incident will not have a material adverse effect on its business, operations, or financial results."],"urls":{"canonical":"https://secwatch.observer/filing/0001428336-24-000055","json":"https://secwatch.observer/filing/0001428336-24-000055.json","markdown":"https://secwatch.observer/filing/0001428336-24-000055.md","text":"https://secwatch.observer/filing/0001428336-24-000055.txt","edgar_index":"https://www.sec.gov/Archives/edgar/data/1428336/000142833624000055/0001428336-24-000055-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/1428336/000142833624000055/hqy-20240702.htm"},"model":{"generated_by":"deepseek-v4-flash:cloud@v2","generated_at":"2026-05-31T23:44:47.226633+00:00"},"review":{"review_status":"machine_generated","human_reviewed":false,"corrected":false,"correction_note":null,"correction_timestamp":null,"superseded_by":null,"related_filings":[]},"source_grounded_claims":[],"comparable_filings":[{"accession":"0001628280-26-024806","ticker":"RICK","company_name":"RCI HOSPITALITY HOLDINGS, INC.","filed_at":"2026-04-13T23:59:59+00:00","headline":"RCI Hospitality discloses cybersecurity incident; contractor PII accessed, no customer data breached","event_type":"cyber","sec_items":["8.01","9.01"],"materiality_score":0.7,"calibrated_materiality_score":0.7,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0001628280-26-024806","json":"https://secwatch.observer/filing/0001628280-26-024806.json","markdown":"https://secwatch.observer/filing/0001628280-26-024806.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/935419/000162828026024806/0001628280-26-024806-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/935419/000162828026024806/rick-20260407.htm"},"side_by_side_evidence":null},{"accession":"0001628280-26-020261","ticker":"HFWA","company_name":"HERITAGE FINANCIAL CORP /WA/","filed_at":"2026-03-23T23:59:59+00:00","headline":"Heritage Financial detects cyber incident; files exfiltrated may contain personal info","event_type":"cyber","sec_items":["8.01","9.01"],"materiality_score":0.55,"calibrated_materiality_score":0.55,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0001628280-26-020261","json":"https://secwatch.observer/filing/0001628280-26-020261.json","markdown":"https://secwatch.observer/filing/0001628280-26-020261.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/1046025/000162828026020261/0001628280-26-020261-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/1046025/000162828026020261/hfwa-20260320.htm"},"side_by_side_evidence":null},{"accession":"0000950170-25-092526","ticker":null,"company_name":"SURMODICS INC","filed_at":"2025-07-02T23:59:59+00:00","headline":"Surmodics discovers unauthorized access to IT systems on June 5; no material customer impact","event_type":"cyber","sec_items":["8.01","9.01"],"materiality_score":0.55,"calibrated_materiality_score":0.55,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0000950170-25-092526","json":"https://secwatch.observer/filing/0000950170-25-092526.json","markdown":"https://secwatch.observer/filing/0000950170-25-092526.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/924717/000095017025092526/0000950170-25-092526-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/924717/000095017025092526/srdx-20250605.htm"},"side_by_side_evidence":null},{"accession":"0000937556-25-000086","ticker":"MASI","company_name":"MASIMO CORP","filed_at":"2025-05-27T23:59:59+00:00","headline":"Masimo provides cyber incident update; manufacturing at near full capacity, no material revenue impact expected","event_type":"cyber","sec_items":["7.01","8.01","9.01"],"materiality_score":0.65,"calibrated_materiality_score":0.65,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0000937556-25-000086","json":"https://secwatch.observer/filing/0000937556-25-000086.json","markdown":"https://secwatch.observer/filing/0000937556-25-000086.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/937556/000093755625000086/0000937556-25-000086-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/937556/000093755625000086/masi-20250527.htm"},"side_by_side_evidence":null},{"accession":"0000784199-24-000253","ticker":"AORT","company_name":"ARTIVION, INC.","filed_at":"2024-12-09T23:59:59+00:00","headline":"Artivion reports cybersecurity incident discovered Nov 21; systems taken offline","event_type":"cyber","sec_items":["8.01","9.01"],"materiality_score":0.65,"calibrated_materiality_score":0.65,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0000784199-24-000253","json":"https://secwatch.observer/filing/0000784199-24-000253.json","markdown":"https://secwatch.observer/filing/0000784199-24-000253.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/784199/000078419924000253/0000784199-24-000253-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/784199/000078419924000253/aort-20241209.htm"},"side_by_side_evidence":null},{"accession":"0001820953-24-000027","ticker":"AFRM","company_name":"Affirm Holdings, Inc.","filed_at":"2024-07-01T23:59:59+00:00","headline":"Affirm reports Affirm Card data breach via Evolve Bank & Trust; secures $330M credit facility","event_type":"cyber","sec_items":["1.01","8.01","9.01"],"materiality_score":0.65,"calibrated_materiality_score":0.65,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0001820953-24-000027","json":"https://secwatch.observer/filing/0001820953-24-000027.json","markdown":"https://secwatch.observer/filing/0001820953-24-000027.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/1820953/000182095324000027/0001820953-24-000027-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/1820953/000182095324000027/afrm-20240625.htm"},"side_by_side_evidence":null},{"accession":"0001023128-24-000079","ticker":"LAD","company_name":"LITHIA MOTORS INC","filed_at":"2024-06-24T23:59:59+00:00","headline":"Lithia Motors disruptions after third-party CDK cyber incident","event_type":"cyber","sec_items":["8.01","9.01"],"materiality_score":0.65,"calibrated_materiality_score":0.65,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0001023128-24-000079","json":"https://secwatch.observer/filing/0001023128-24-000079.json","markdown":"https://secwatch.observer/filing/0001023128-24-000079.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/1023128/000102312824000079/0001023128-24-000079-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/1023128/000102312824000079/lad-20240619.htm"},"side_by_side_evidence":null},{"accession":"0001031203-24-000048","ticker":"GPI","company_name":"GROUP 1 AUTOMOTIVE INC","filed_at":"2024-06-24T23:59:59+00:00","headline":"Group 1 Automotive U.S. ops disrupted by CDK cyber incident; restoration timeline unclear","event_type":"cyber","sec_items":["8.01","9.01"],"materiality_score":0.75,"calibrated_materiality_score":0.75,"match_reasons":["same SEC item: 8.01, 9.01","same event type: cyber","similar materiality"],"urls":{"canonical":"https://secwatch.observer/filing/0001031203-24-000048","json":"https://secwatch.observer/filing/0001031203-24-000048.json","markdown":"https://secwatch.observer/filing/0001031203-24-000048.md","edgar_index":"https://www.sec.gov/Archives/edgar/data/1031203/000103120324000048/0001031203-24-000048-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/1031203/000103120324000048/gpi-20240619.htm"},"side_by_side_evidence":null}],"license":"Source filings: public domain (SEC EDGAR). Summaries (headline + bullets): CC-BY-4.0; attribute https://secwatch.observer"}