Over 3.4 million Americans just had their most sensitive information compromised again.
TriZetto Provider Solutions (a Cognizant subsidiary handling healthcare billing, claims, and eligibility for providers nationwide) confirmed unauthorized access that began as far back as November 2024 and went undetected until October 2025. Names, addresses, dates of birth, Social Security numbers, health insurance IDs, and protected health information were all sitting in a web portal that became a goldmine for attackers.
This wasn’t a sophisticated zero-day exploit on core systems. It was a third-party vendor portal holding years of historical patient data—exactly the kind of centralized PII hoarding that turns every healthcare supplier into a single point of catastrophic failure.
We’ve seen this movie too many times. Equifax. AT&T. Now TriZetto. Each breach is presented as an isolated incident, but the pattern is structural: organizations continue to collect and store far more personal data than they actually need, then act surprised when it walks out the door.
At Trua, we refuse to accept this as inevitable and are determined to solve this problem for good.
We built a different model—one that actually solves the root problem. With Trua’s reusable digital trust credentials, individuals verify their identity once through a privacy-first process and obtain their own Trust Credential for Life (Token). Organizations get the instant, continuous assurance they need—without ever collecting, storing, or exposing raw SSNs, DOBs, or other sensitive PII on their servers. Tokenized. User-controlled. Portable across industries and platforms. The relying parties even can request step-upped verifications as the use-case may warrant for higher assurance (such as credentials, court records, Licensure, etc.).
No more massive databases full of redundant personal data. No more turning patients into the product—or the next victims.
The status quo isn’t just expensive and inconvenient. It’s dangerous. It erodes trust, inflates compliance costs, and leaves millions exposed every single day.
We don’t need better breach notifications. We need systems designed so breaches, if they do occur, don’t expose the crown jewels of individuals in the first place.
If you’re tired of the cycle—whether you’re a healthcare provider, payer, employer, or anyone responsible for identity and risk screening—let’s talk. Trua delivers verified trust without the need for the relying parties to collect, store, and guard any personally identifiable information (PII).
What’s your take? Have you been impacted by one of these supply-chain healthcare breaches? Share your thoughts with us.