TriZetto Data Breach and Lawsuits (2025–2026)

CyberDefender 4 mins0
  • TriZetto Provider Solutions (TPS) — a healthcare claims processing and revenue cycle management subsidiary of Cognizant — experienced a cybersecurity breach that was detected on October 2, 2025.
  • A forensic investigation found that unauthorized access started as early as November 2024, meaning the attacker had access for nearly a year before detection.
  • The breach involved a web portal used by healthcare provider clients to access TPS systems.

Data Exposed

According to notices to affected parties and breach investigations, the compromised data likely included:

  • Names, addresses, dates of birth
  • Social Security numbers
  • Health insurance member numbers (including Medicare numbers in some cases)
  • Health insurer names and demographic/medical-related information

Financial account numbers or bank/credit card details were not publicly confirmed as part of the breach.

Company Response

  • TriZetto immediately secured the affected web portal and engaged Mandiant, a major cybersecurity firm, to investigate and remediate the breach.
  • The company states that no further unauthorized access has been detected since discovery.
  • Healthcare providers and affected individuals are being notified under HIPAA breach notification requirements.
  • TPS reportedly offered affected individuals services such as credit monitoring and identity theft protection assistance.

Legal Fallout & Lawsuits

  • As of early January 2026, multiple class-action lawsuits have been filed in U.S. federal courts (e.g., District of New Jersey, Eastern District of Missouri) against Cognizant Technology Solutions and TriZetto Provider Solutions.
  • Plaintiffs allege that TPS failed to safeguard sensitive information and delayed notifying individuals about the breach, causing increased risk of identity theft and financial harm.
  • The suits seek monetary damages (some plaintiffs are asking for over $5 million), court orders for improved security audits, and other relief.

Extent & Impact

  • The exact number of affected individuals and healthcare clients is not yet publicly confirmed; early complaints cite at least hundreds of affected individuals, but this figure could grow as notifications continue.
  • Lawsuits highlight concerns that the long delay in discovering or disclosing the breach hampered affected people’s ability to act quickly to protect themselves.

Why It Matters

This breach is significant because:

  • It touches healthcare-related protected health information (PHI), which is highly sensitive and regulated under HIPAA.
  • The long exposure period (nearly a year) points to gaps in monitoring and breach detection in a critical healthcare IT environment.
  • The resulting litigation underscores legal and compliance risks for technology service providers in the healthcare sector.

CyberDefender