A major cybersecurity incident at TriZetto, a leading health technology firm, has compromised the personal and medical data of more than 3.4 million Americans. The breach, which went undetected for nearly a year, was confirmed in a recent filing with Maine’s attorney general and highlights the persistent vulnerability of healthcare systems to cyberattacks.
Delayed Detection and Stolen Data
TriZetto, owned by Cognizant, serves a vast network of approximately 875,000 healthcare providers and impacts around 200 million patients across the United States. The company processes insurance eligibility transactions, making it a prime target for hackers seeking sensitive personal information.
The breach occurred as early as November 2024, but was not identified until October 2025. Stolen data includes:
- Personal Identifiable Information (PII): Names, dates of birth, addresses, and Social Security numbers.
- Protected Health Information (PHI): Provider details, demographic data, and insurance information.
Cognizant spokesperson William Abelson stated the company has “eliminated the threat,” but did not explain the significant delay in detection. This raises questions about TriZetto’s cybersecurity protocols and monitoring capabilities.
Impact on Healthcare Providers
Several organizations have confirmed their patients were affected, including OCHIN, a nonprofit supporting rural and community healthcare providers, and multiple entities in California. While not all TriZetto customers were impacted, the scale of the breach is substantial.
A Growing Trend in Healthcare Cyberattacks
This incident is part of a disturbing trend of cyberattacks targeting the healthcare sector. In 2024, Change Healthcare, another major health tech company, suffered a ransomware attack that exposed over 192 million patient records and caused widespread disruptions to medical services.
These attacks demonstrate that healthcare data is highly valuable to cybercriminals, and that current security measures are often insufficient. The long delay in detecting the TriZetto breach underscores the need for more proactive monitoring and incident response strategies in the healthcare industry.
Healthcare organizations must prioritize cybersecurity investments to protect sensitive patient data and maintain public trust. The failure to do so has far-reaching consequences, including identity theft, medical fraud, and disruptions to essential healthcare services.
