• Home
  • cyber
  • TriZetto Provider Solutions, Cognizant and Wynn Resorts: Wynn Resorts confirms breach, believes data deletion claims
cyber Breach

TriZetto Provider Solutions, Cognizant and Wynn Resorts: Wynn Resorts confirms breach, believes data deletion claims

Jan 1, 2024 2 min read
TriZetto Provider Solutions, Cognizant and Wynn Resorts: Wynn Resorts confirms breach, believes data deletion claims

TriZetto Provider Solutions Breach Exposes Data of Over 3.4 Million Individuals

In a major cybersecurity incident, TriZetto Provider Solutions, a health insurance technology subsidiary of Cognizant, reported that the sensitive data of 3.4 million individuals was stolen in a 2024 breach. The attack, attributed to the ShinyHunters hacking group, compromised employee data and disrupted IT systems, including billing and customer delivery operations.

While Wynn Resorts another victim of ShinyHunters acknowledged a breach and offered credit monitoring services to affected employees, the group later claimed to have deleted the stolen data, a move experts suggest may indicate a ransom payment. However, cybersecurity analysts, including Dray Agha of Huntress, caution that threat actors often retain or sell stolen data despite such assurances, as there is no reliable way to verify deletion claims.

The breach highlights the growing risk of extortion-based cyberattacks, where hackers demand payment in exchange for purported data removal though victims remain vulnerable to future misuse. The incident underscores the challenges organizations face in confirming the true scope of data compromise and the effectiveness of attacker promises.

Source: https://www.scworld.com/brief/wynn-resorts-confirms-breach-believes-data-deletion-claims

TriZetto Provider Solutions cybersecurity rating report: https://www.rankiteo.com/company/trizettoprovider

Wynn Resorts cybersecurity rating report: https://www.rankiteo.com/company/wynnresorts

Cognizant cybersecurity rating report: https://www.rankiteo.com/company/cognizant

"id": "TRIWYNCOG1772159592",
"linkid": "trizettoprovider, wynnresorts, cognizant",
"type": "Breach",
"date": "1/2024",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '3.4 million individuals',
                        'industry': 'Health Insurance Technology',
                        'name': 'TriZetto Provider Solutions',
                        'type': 'Subsidiary'},
                       {'industry': 'Hospitality',
                        'name': 'Wynn Resorts',
                        'type': 'Company'}],
 'customer_advisories': 'Credit monitoring services offered to affected '
                        'employees',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': '3.4 million',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Sensitive data, employee data'},
 'date_detected': '2024',
 'description': 'In a major cybersecurity incident, TriZetto Provider '
                'Solutions, a health insurance technology subsidiary of '
                'Cognizant, reported that the sensitive data of 3.4 million '
                'individuals was stolen in a 2024 breach. The attack, '
                'attributed to the ShinyHunters hacking group, compromised '
                'employee data and disrupted IT systems, including billing and '
                'customer delivery operations. While Wynn Resorts, another '
                'victim of ShinyHunters, acknowledged a breach and offered '
                'credit monitoring services to affected employees, the group '
                'later claimed to have deleted the stolen data, a move experts '
                'suggest may indicate a ransom payment. However, cybersecurity '
                'analysts caution that threat actors often retain or sell '
                'stolen data despite such assurances, as there is no reliable '
                'way to verify deletion claims.',
 'impact': {'data_compromised': 'Sensitive data of 3.4 million individuals',
            'identity_theft_risk': 'High',
            'operational_impact': 'Disrupted IT systems',
            'systems_affected': ['Billing', 'Customer delivery operations']},
 'lessons_learned': 'The incident highlights the growing risk of '
                    'extortion-based cyberattacks and the challenges '
                    'organizations face in confirming the true scope of data '
                    'compromise and the effectiveness of attacker promises.',
 'motivation': 'Extortion',
 'ransomware': {'data_exfiltration': True,
                'ransom_paid': 'Possible (implied by data deletion claim)'},
 'references': [{'source': 'Cybersecurity analysts (e.g., Dray Agha of '
                           'Huntress)'}],
 'response': {'communication_strategy': 'Offered credit monitoring services to '
                                        'affected employees'},
 'threat_actor': 'ShinyHunters',
 'title': 'TriZetto Provider Solutions Breach Exposes Data of Over 3.4 Million '
          'Individuals',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.