Cyberattack on healthcare technology firm reveals prolonged system compromise, raising alarms over data security practices and third-party risks, as millions of patients face potential identity theft, fraud, and targeted cyber threats.
A major cybersecurity breach at TriZetto Provider Solutions, a healthcare technology arm of Cognizant, has compromised sensitive medical and personal data of nearly 3.43 million patients, underscoring growing vulnerabilities in healthcare supply chains.
The company confirmed that external systems were infiltrated by malicious actors, allowing unauthorized access to patient information, including names, personal identifiers, and healthcare-related data. The scale and nature of the breach have placed it among the most significant incidents affecting third-party healthcare service providers in recent years.
Undetected intrusion raises security concerns
According to the official disclosure, the breach began on November 19, 2024, but remained undetected until November 28, 2025, giving attackers more than a year inside the network. The prolonged presence of threat actors has raised serious questions about monitoring systems and incident detection capabilities within the organization.
The breach was formally reported to the Maine Attorney General’s Office on February 6, 2026, by legal counsel from McDermott Will & Schulte. Authorities confirmed that while the incident impacted millions across the United States, at least 1,128 affected individuals were residents of Maine.
Security analysts note that the extended “dwell time” significantly increased the potential damage, as attackers had ample opportunity to extract large volumes of sensitive data without being detected.
Response measures and user protection
Following the discovery, TriZetto initiated a comprehensive investigation and began notifying affected individuals. The company is issuing formal written communications to all impacted patients, in line with regulatory requirements.
To support victims, TriZetto has partnered with Kroll to provide assistance services, including 12 months of complimentary credit monitoring and identity theft protection.
Experts warn that the exposure of combined personal and medical data heightens risks such as spear-phishing, medical identity theft, and financial fraud. Affected individuals are being advised to monitor financial and medical statements closely and consider placing credit freezes as a precaution.
Cybersecurity specialists say the incident highlights the increasing targeting of healthcare technology providers, which store high-value data. They stress the urgent need for stronger threat detection, continuous monitoring, and faster response mechanisms to prevent long-term, undetected intrusions and safeguard patient information.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
