Valley Family Health Care Patients Impacted by Third-Party Portal Breach

Valley Family Health Care (VFHC) reports patients of a data breach involving their third party provider TriZetto (TPS). 

TPS serves as a business associate for OCHIN, the company that provides VFHC's electronic medical record systems. Attackers breached a web portal that TPS uses to check if patients have insurance.

The investigation confirmed that attackers accessed sensitive data. The exposed data includes:

• Full names and home addresses
• Dates of birth
• Social Security numbers
• Health insurance member numbers and Medicare IDs
• Health insurer and provider names
• Demographic and health insurance information

The breach impacted about 4,500 patients.

TPS patched the security vulnerability and notified the police and authorities. VFHC plans to mail official letters to the 4,500 affected patients around February 9, 2026 and is offering free identity theft protection and credit monitoring.

VFHC advises patients to monitor their bank statements and credit reports for any strange activity.