Thousands more Oregon residents learn their health data was stolen in TriZetto breach

Thousands more Oregonians will soon receive data breach letters in the continued fallout from the TriZetto data breach, in which someone hacked the insurance verification provider and gained access to its healthcare provider customers across multiple US states. The breach occurred back in November 2024, with intruders snooping through protected health information and other sensitive personal information belonging to hundreds of thousands of patients and insurance policy holders. TriZetto Provider Solutions (TPS) did not discover the digital thieves on their network until almost a year later. "TPS reports that the threat was eliminated on Oct. 2, 2025, and may have exposed the PHI of more than 700,000 people," according to a Thursday advisory from Deschutes County Health Services, Best Care, and the La Pine Community Health Center, all of which serve patients across Central Oregon. The three Oregon medical providers, along with those in Massachusetts, Oklahoma, and dozens of other healthcare clinics in California were notified in early December 2025. Deschutes County said about 1,300 patients were affected, La Pine will notify about 1,200, and Best Care will notify about 1,650 that their health information was exposed. The healthcare orgs say there's no evidence at this time that people's info has been misused - such as for medical fraud and identity theft scams - and no financial details were stolen in the breach. $380M lawsuit claims intruder got Clorox's passwords from Cognizant simply by asking NHS supplier ends probe into ransomware attack that contributed to patient death ChatGPT Health wants your sensitive medical records so it can play doctor ShinyHunters swipes right on 10M records in alleged dating app data grab Cognizant, which owns TriZetto, has been hit with multiple class action lawsuits as a result of the compromise. "On October 2, TPS became aware of suspicious activity within a web portal that some of TPS’s healthcare provider customers use to access our systems," Cognizant told The Register. "We quickly launched an investigation, took steps to mitigate the issue, and eliminated the threat to the environment. We have also engaged external cybersecurity experts, Mandiant, and notified law enforcement. We have notified affected customers and patients and provided them with the support and the information they need. This was not a ransom incident." This is not the first time Cognizant has ended up in court over its security practices - or lack thereof. In July, Clorox sued Cognizant, its service desk provider, for $380 million in a California state court over a 2023 cyberattack in which the IT support crew allegedly "enabled a cybercriminal to gain a foothold in Clorox's network" by handing over staffers' passwords to attackers after they simply requested them. ®