TriZetto Data Breach Exposes SSNs & Health Details

In late 2024, TriZetto Provider Solutions, a major healthcare technology company specializing in revenue cycle management (RCM) services, experienced a significant data breach impacting a large number of patients and insured individuals across the United States. The exposed data includes both personally identifiable information (PII) and protected health information (PHI).

TriZetto Provider Solutions, a Cognizant-owned company, acts as a clearinghouse and RCM partner for hospitals, health systems, physician practices and billing companies, processing high volumes of electronic health claims and related transactions.

On October 2, 2025, TriZetto Provider Solutions (TPS) identified suspicious activity on a customer web portal. Their investigation found that an unauthorized actor had accessed historical eligibility transaction reports in their system beginning in November 2024.

Potential information exposed includes names of patients and primary insureds, addresses, dates of birth, Social Security numbers, health insurance member numbers (and in some cases, Medicare beneficiary numbers), health insurer names, information about the primary insured or beneficiary, and other demographic, medical and health insurance information.

The incident is considered severe due to the nature and scope of the information involved. While the specific method of attack and the number of affected individuals have not been publicly disclosed, the data stolen could be used for identity theft, insurance fraud or targeted phishing attacks.

The data breach impacted individuals whose information was processed by TriZetto Provider Solutions’ RCM platform, which supports approximately 200 million lives and integrates with over 650 electronic medical record and practice management systems.

TriZetto Provider Solutions' response

Following the discovery of the breach, TriZetto Provider Solutions initiated a thorough investigation to determine the scope and cause of the incident. The company worked with cybersecurity experts to contain the breach, secure its systems, and assess the extent of the data exposure.

Affected healthcare providers and business partners were notified, and regulatory authorities were informed in accordance with federal and state requirements.

If you receive notification from TriZetto Provider Solutions or your provider about this breach, you may want to:

• Sign up for the free Kroll identity theft protection credit monitoring services, offered by the company.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.