When did the Gainwell Technologies breach occur?

The data breach incident occurred on July 23, 2025, when an unauthorized caller contacted Gainwell Technologies seeking to access payments to healthcare providers and successfully gained access to sensitive reimbursement account information.

How many people were affected by the Gainwell Technologies breach?

The breach affected 912 Medicaid recipients whose protected health information might have been disclosed. Gainwell Technologies has notified all 912 affected Medicaid members about the potential exposure of their sensitive information.

What type of attack was used against Gainwell Technologies?

The incident involved a person contacting Gainwell via phone call seeking to access payments to healthcare providers. It's unclear whether this was a social engineering attack or a breach of the automated phone-based authentication system, but the caller successfully gained unauthorized access to account data.

What types of sensitive data were exposed in the Gainwell breach?

The exposed data includes names of Medicaid recipients, Medicaid member identification numbers, coverage information, payment information for medical claims, and date ranges for when services were provided under Georgia Medicaid.

What assistance is Gainwell Technologies providing to affected individuals?

Gainwell Technologies is offering free credit monitoring services for one year to all affected Medicaid recipients. The company has also established support for affected individuals through identity protection services.

How can affected Medicaid recipients get help regarding the Gainwell breach?

Anyone who received a notification letter about the breach can contact IDX at 1-833-788-9712 for assistance with the identity protection services. This support line is available to help affected Medicaid recipients with questions and concerns about the incident.

What is Gainwell Technologies' role in Georgia's Medicaid program?

Gainwell Technologies serves as an agent for Georgia's Medicaid program, handling various administrative functions including processing payments to healthcare providers and managing reimbursement account data for Medicaid services provided to recipients.

Incident

Gainwell Technologies reports data breach affecting over 900 Georgia medicaid recipients

Q: What happened in the Gainwell Technologies data breach?

Gainwell Technologies, an agent for Georgia's Medicaid program, experienced a data breach that exposed health information of 912 Medicaid recipients. The incident occurred when a person contacted Gainwell via phone and gained unauthorized access to reimbursement account data.

published: Sept. 26, 2025

Learn More

Gainwell Technologies an agent for Georgia's Medicaid program, is reporting a data breach that exposed health information of 912 Medicaid recipients.

The incident occurred on July 23, 2025, when a person contacted Gainwell via a phone call seeking to access payments to healthcare providers. It's not clear whether this is a social engineering attack or breach of automated phone-based authentication system. The caller gained access to a reimbursement account data. Exposed data includes:

Names of Medicaid recipients
Medicaid member identification numbers
Coverage information
Payment information for medical claims
Date ranges for when services were provided under Georgia Medicaid

The company is offering free credit monitoring for one year to all affected Medicaid recipients.

The company notified 912 Medicaid members whose protected health information might have been disclosed, and anyone who received a notification letter can contact IDX at 1-833-788-9712 for assistance with the identity protection services.

Gainwell Technologies reports data breach affecting over 900 Georgia medicaid recipients

Read More
Zumpano Patricios Law Firm reports data breach affecting …
Cornick, Garber & Sandler, LLP Reports Data Breach …
Law Firm Bassford Remele reports data breach
American Israel Public Affairs Committee reports four months …
PeopleCheck reports data breach caused by ransomware attack