Cognizant faces lawsuits in US over TriZetto Healthcare data breach
At least four lawsuits were filed in December against Cognizant and TriZetto Provider Solutions in the US district courts for the District of New Jersey and the Eastern District of Missouri. The core allegations claim that TPS failed to adequately...
By ETtech |
ETtech
US-listed software service provider Cognizant Technology Solutions Corp is facing multiple class action lawsuits after its healthcare claims processing subsidiary, TriZetto Provider Solutions (TPS), suffered a data breach.
At least four lawsuits were filed in December against Cognizant and TriZetto Provider Solutions in the US district courts for the District of New Jersey and the Eastern District of Missouri.
The core allegations claim that TPS failed to adequately protect the impacted people’s data and did not provide timely notifications after a cyberattack.
“Plaintiff brings this class action against Defendant for its failure to properly secure and safeguard Plaintiff’s and other similarly situated current and former patients’ (“Class Members,” defined infra) sensitive information, including protected health information (“PHI”) and other personally identifiable information (“PII”),” said one of the class action complaints filed on December 17, 2025.
“TPS takes the protection of information very seriously and regrets any inconvenience this incident may have caused. Because this matter involves ongoing litigation, we are unable to provide further comment at this time,” said a Cognizant spokesperson.
Details like names of patients, addresses, dates of birth, social security numbers, health insurance member numbers, health insurer name, information about the primary insured or beneficiary, and other demographic and health insurance information, were allegedly leaked, according to the complaint.
An unauthorised third party allegedly breached TriZetto’s network system around November 2024 and accessed private information, which the company did not identify until on or around October 2, 2025, nearly a year after the breach.
After engaging an external vendor for assistance, TriZetto determined that a data breach had occurred that compromised patients' and insured persons’ private information, as per one complaint filed on December 23, 2025.
More than 100 people are expected to have been impacted by the data breach, according to the petitioners, across several states in the U.S. The value of damage claimed exceeds $5 million, as per one complaint filed on December 19, 2025, exclusive of interest and costs. ET accessed copies of at least three such petitions filed.
At least four lawsuits were filed in December against Cognizant and TriZetto Provider Solutions in the US district courts for the District of New Jersey and the Eastern District of Missouri.
The core allegations claim that TPS failed to adequately protect the impacted people’s data and did not provide timely notifications after a cyberattack.
“Plaintiff brings this class action against Defendant for its failure to properly secure and safeguard Plaintiff’s and other similarly situated current and former patients’ (“Class Members,” defined infra) sensitive information, including protected health information (“PHI”) and other personally identifiable information (“PII”),” said one of the class action complaints filed on December 17, 2025.
“TPS takes the protection of information very seriously and regrets any inconvenience this incident may have caused. Because this matter involves ongoing litigation, we are unable to provide further comment at this time,” said a Cognizant spokesperson.
Details like names of patients, addresses, dates of birth, social security numbers, health insurance member numbers, health insurer name, information about the primary insured or beneficiary, and other demographic and health insurance information, were allegedly leaked, according to the complaint.
ADVERTISEMENT
An unauthorised third party allegedly breached TriZetto’s network system around November 2024 and accessed private information, which the company did not identify until on or around October 2, 2025, nearly a year after the breach.
After engaging an external vendor for assistance, TriZetto determined that a data breach had occurred that compromised patients' and insured persons’ private information, as per one complaint filed on December 23, 2025.
More than 100 people are expected to have been impacted by the data breach, according to the petitioners, across several states in the U.S. The value of damage claimed exceeds $5 million, as per one complaint filed on December 19, 2025, exclusive of interest and costs. ET accessed copies of at least three such petitions filed.
Download
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
Download
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
ADVERTISEMENT
