Gainwell Technologies Data Breach Exposes PHI and PII for 22,500 People

Gainwell Technologies LLC, a U.S.-based health IT company that partners with government agencies to manage Medicaid and public health programs, disclosed a data breach affecting approximately 22,500 individuals in the United States.

DSS and Gainwell began notifying affected individuals by postal mail on May 22, 2026. They also posted a notice about the incident on the Connecticut state government website.

The breach began on March 4, 2026, when an unauthorized third party used compromised credentials belonging to Hartford HealthCare employees to log into a small number of Hartford HealthCare payment accounts on the HUSKY provider portal. The portal is a web-based system that healthcare providers use to interact with Connecticut's Medicaid program.

Once inside, the threat actor downloaded certain files containing patient information from the website.

The unauthorized access went undetected for approximately three weeks before it was identified. A subsequent investigation revealed that the threat actor had gained entry by using the compromised Hartford HealthCare employee credentials to access Hartford HealthCare user accounts on the portal.

The specific information impacted varied from person to person but included full names, identification numbers associated with Hartford HealthCare accounts or Medicaid claims, dates of medical services, information about services received and how they were billed, payment information (including amounts paid) and information about applicable non-Medicaid health insurance (including policy and group numbers).

The incident did not involve Social Security numbers or financial account information.

Gainwell Technologies' response to the breach

Affected individuals are being notified through postal mail. The notification includes an offer of credit and identity monitoring services, along with certain fraud support services.

Individuals who believe they may have been impacted are encouraged to call 1-855-744-4488 for more information about the incident and to enroll in the offered services.