134/69 Monday, March 9, 2026
TriZetto Provider Solutions, a healthcare information technology provider that delivers software and systems to health insurers and medical service providers-and has operated under Cognizant since 2014—has disclosed a data breach affecting the personal information of more than 3.4 million patients. The company reported detecting suspicious activity within its systems on October 2, 2025, after which it launched an investigation with the assistance of external cybersecurity experts.
The investigation determined that unauthorized access to the system had been occurring since November 19, 2024. The attackers were able to access data related to insurance eligibility verification, a process healthcare providers use to confirm patient coverage before delivering medical services. The compromised information varies by individual but may include full names, addresses, dates of birth, Social Security numbers, health insurance member IDs, Medicare beneficiary numbers, healthcare provider names, insurance company details, and other demographic, health, and insurance-related information.
TriZetto notified affected healthcare providers on December 9, 2025, while customer notifications began in early February 2026. According to filings with U.S. state attorneys general, the breach affected 3,433,965 individuals. The company stated that the incident did not expose payment card details, bank account information, or other financial data, and no evidence has been found indicating that the accessed information has been misused. In response, TriZetto has strengthened its system security, notified law enforcement authorities, and offered 12 months of free credit monitoring and identity protection services through Kroll to affected individuals. As of now, no ransomware group has claimed responsibility for the breach, and no related data has been identified on underground forums.