Zelis Healthcare Data Breach Affects Thousands of Individuals

Zelis Healthcare LLC, a company that provides healthcare payment and cost management technology for the healthcare industry, experienced a data breach. The data breach was disclosed to the U.S. Department of Health and Human Services on Aug. 12, 2025, reporting at least 4,289 individuals impacted.

The cybersecurity incident was significant due to the nature of the data involved and the company’s extensive reach across the healthcare industry. The breach compromised both personally identifiable information (PII) and, potentially, protected health information (PHI).

Exposed information may include names, contact information, dates of birth, Social Security numbers, driver's license or state ID numbers, medical records, health insurance information, payment information including payment card numbers and CVV codes.

Zelis Healthcare's response

In addition to required state and federal disclosures, the organization will work to notify impacted providers and patients by mail.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Zelis Healthcare or your medical provider.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about the healthcare technology company, visit the Zelis Healthcare LLC website.