Search

Cognizant TriZetto Breach Exposes Health Data of 3.4 Million Patients

Cyber threats and incidents
By Evan Rowe
Credit: Cognizant

Related

Founders, Analysts & Industry Voices

CISOs to Watch in Virginia’s Higher Education Industry

Virginia’s higher education institutions operate complex digital environments that...
Read more
Cyber threats and incidents

AI-Driven Malware Campaign Linked to Transparent Tribe Targets Indian Government Entities

What happened Cybersecurity researchers have uncovered a campaign by the...
Read more
Founders, Analysts & Industry Voices

Aviation Cybersecurity Leaders to Watch in the Netherlands

The aviation sector is one of the most complex...
Read more
Cyber threats and incidents

Cognizant TriZetto Breach Exposes Health Data of 3.4 Million Patients

What happened TriZetto Provider Solutions, a healthcare IT company owned...
Read more
Cyber threats and incidents

FBI Investigates Breach of Surveillance and Wiretap Systems

What happened The Federal Bureau of Investigation (FBI) confirmed it...
Read more

Share

What happened

TriZetto Provider Solutions, a healthcare IT company owned by Cognizant, disclosed a data breach that exposed sensitive health and personal information belonging to approximately 3,433,965 individuals. The company detected suspicious activity on a web portal on October 2, 2025, but an investigation found that unauthorized access began nearly a year earlier on November 19, 2024. During this period, attackers accessed records linked to insurance eligibility verification transactions used by healthcare providers to confirm patient coverage. The exposed information varies by individual and may include names, addresses, dates of birth, Social Security numbers, health insurance member numbers, Medicare beneficiary identifiers, provider names, and other demographic and insurance details. TriZetto stated that payment card and bank account information were not exposed and reported the incident to law enforcement. 

Who is affected

Patients whose insurance verification data was processed through TriZetto Provider Solutions systems are affected, with more than 3.4 million individuals’ personal and healthcare-related information exposed in the breach. 

Why CISOs should care

The incident highlights the risks associated with healthcare IT platforms that handle large volumes of insurance and patient data, where compromise of a single vendor system can expose sensitive information across multiple healthcare providers. 

3 practical actions

  1. Audit vendor access to patient data. Review third-party healthcare platforms that process insurance and patient verification records.
  2. Monitor for identity and healthcare fraud indicators. Track unusual activity involving exposed Social Security numbers or insurance identifiers.
  3. Strengthen third-party risk management controls. Evaluate security practices and incident response processes of healthcare technology vendors.

Stay updated on the latest data breach incidents affecting organizations, governments, and technology providers worldwide. Explore more coverage of major breaches and exposed data.

Previous article
FBI Investigates Breach of Surveillance and Wiretap Systems
Next article
Aviation Cybersecurity Leaders to Watch in the Netherlands
Founders, Analysts & Industry Voices

CISOs to Watch in Virginia’s Higher Education Industry

Virginia’s higher education institutions operate complex digital environments that...
Cyber threats and incidents

AI-Driven Malware Campaign Linked to Transparent Tribe Targets Indian Government Entities

What happened Cybersecurity researchers have uncovered a campaign by the...

Subscribe to our stories

To be updated with all the latest news, offers and special announcements.