The HIPAA Journal reports:
TriZetto Provider Solutions, a Cognizant-owned provider of revenue management services to physicians, hospitals, and health systems, has started notifying certain healthcare clients about a recently identified cybersecurity incident.
On October 2, 2025, suspicious activity was identified within a web portal used by some of its healthcare provider customers to access TriZetto systems. Immediate action was taken to secure the web portal and mitigate the incident, and the cybersecurity firm Mandiant was engaged to investigate the activity, review the security of the web portal application, and ensure that the incident is fully remediated. TriZetto is satisfied that the threat actor has been eradicated from its system. No further unauthorized web portal activity has been detected since October 2, 2025.
While the cybersecurity incident was only recently detected, the unauthorized access has been ongoing for a considerable period of time.
Read more at The HIPAA Journal to see a list of entities that have recently disclosed being impacted by the incident. The breach reportedly occurred in November 2024, but clients and regulated entities have only been notified recently.
