TriZetto, OCHIN and Adapt Integrated Health Care: Adapt Integrated Health Care reports data breach at vendor, assures patient info safety

Adapt Integrated Health Care Reports Third-Party Data Security Incident

Adapt Integrated Health Care disclosed a data security incident involving TriZetto, a third-party vendor for its electronic medical record system provider, OCHIN. The breach was discovered on December 10, 2025, when OCHIN notified Adapt that an unauthorized individual had accessed one of TriZetto’s systems.

TriZetto acted to halt the unauthorized activity and secure its systems. While Adapt’s internal systems were not directly breached, the incident may have exposed sensitive patient information. Not all patients were affected, and there is currently no evidence that the data has been misused.

Potentially exposed data includes:

• Names
• Social Security numbers
• Dates of birth
• Contact information
• Health-related and insurance details

Adapt is collaborating with OCHIN to strengthen security measures and review its own processes to prevent future incidents. TriZetto plans to begin sending individual notification letters to affected patients in February 2026, with support from its vendor, Kroll, which will provide identity theft protection services, call center assistance, and credit monitoring enrollment instructions.

For further details, patients may contact TriZetto’s dedicated call center at (844) 572-2724 or reach out to Heather Donohue, COO of TriZetto Provider Solutions, at (314) 802-6789.

Source: https://kpic.com/news/local/adapt-integrated-health-care-reports-data-breach-at-vendor-assures-patient-info-safety

TriZetto Healthcare Products cybersecurity rating report: https://www.rankiteo.com/company/trizetto-healthcare-products

OCHIN, Inc. cybersecurity rating report: https://www.rankiteo.com/company/ochin

Adapt Integrated Health Care cybersecurity rating report: https://www.rankiteo.com/company/adaptoregon

"id": "TRIOCHADA1768955835",
"linkid": "trizetto-healthcare-products, ochin, adaptoregon",
"type": "Breach",
"date": "12/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Not all patients (subset of '
                                              'patients)',
                        'industry': 'Healthcare',
                        'name': 'Adapt Integrated Health Care',
                        'type': 'Healthcare Provider'},
                       {'industry': 'Healthcare IT',
                        'name': 'TriZetto',
                        'type': 'Third-Party Vendor'},
                       {'industry': 'Healthcare IT',
                        'name': 'OCHIN',
                        'type': 'Electronic Medical Record System Provider'}],
 'attack_vector': 'Third-Party Vendor Compromise',
 'customer_advisories': 'Patients may contact TriZetto’s dedicated call center '
                        'at (844) 572-2724 or Heather Donohue, COO of TriZetto '
                        'Provider Solutions, at (314) 802-6789 for further '
                        'details.',
 'data_breach': {'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High (Personally Identifiable '
                                        'Information and Protected Health '
                                        'Information)',
                 'type_of_data_compromised': ['Names',
                                              'Social Security numbers',
                                              'Dates of birth',
                                              'Contact information',
                                              'Health-related details',
                                              'Insurance details']},
 'date_detected': '2025-12-10',
 'description': 'Adapt Integrated Health Care disclosed a data security '
                'incident involving TriZetto, a third-party vendor for its '
                'electronic medical record system provider, OCHIN. The breach '
                'was discovered when OCHIN notified Adapt that an unauthorized '
                'individual had accessed one of TriZetto’s systems. TriZetto '
                'acted to halt the unauthorized activity and secure its '
                'systems. While Adapt’s internal systems were not directly '
                'breached, the incident may have exposed sensitive patient '
                'information.',
 'impact': {'data_compromised': 'Sensitive patient information',
            'identity_theft_risk': 'Yes',
            'systems_affected': 'TriZetto’s systems (third-party vendor)'},
 'investigation_status': 'Ongoing',
 'references': [{'source': 'Adapt Integrated Health Care Disclosure'}],
 'response': {'communication_strategy': 'Individual notification letters to '
                                        'affected patients beginning February '
                                        '2026',
              'containment_measures': 'TriZetto acted to halt the unauthorized '
                                      'activity and secure its systems',
              'remediation_measures': 'Strengthening security measures, '
                                      'reviewing processes',
              'third_party_assistance': 'Kroll (identity theft protection '
                                        'services, call center assistance, '
                                        'credit monitoring)'},
 'threat_actor': 'Unauthorized Individual',
 'title': 'Adapt Integrated Health Care Third-Party Data Security Incident',
 'type': 'Data Breach'}