TriZetto Provider Solutions reports year-long data breach affecting healthcare provider clients
Learn More
TriZetto Provider Solutions, a revenue management services provider for healthcare organizations, is reporting a data breach affecting an undisclosed number of healthcare provider clients and their patients.
On October 2, 2025, the company identified suspicious activity within a web portal used by healthcare providers to access its systems. The investigation confirmed that an unauthorized third party had been accessing the system since November 2024, making this an 11-month compromise before discovery. The compromised information includes:
- Names of patients and primary insureds
- Addresses
- Dates of birth
- Social Security numbers
- Health insurance member numbers (including Medicare beneficiary numbers in some cases)
- Health insurer names
- Information about primary insureds or beneficiaries
- Other demographic health and health insurance information
The number of affected individuals and the nature of the attack is not disclosed. TriZetto claims that the threat actor has been eradicated from its system. TriZetto has offered to assist its healthcare clients by handling individual breach notifications, reporting the incident to the Department of Health and Human Services' Office for Civil Rights, notifying state regulators and media outlets, and covering the costs of complimentary credit monitoring, fraud consultation, and identity theft restoration services for affected individuals.
Update - as of 24th of February 2026, TriZetto reports to Oregon’s Department of Justice that 3,433,965 people were affected by the breach.
