Healthtech firm Xolis data breach hits 1.4 million people
▼ Summary
– A targeted phishing attack on January 20, 2026, compromised the network of healthcare tech firm Xsolis, exposing sensitive data of nearly 1.4 million individuals.
– Exposed data includes names, addresses, dates of birth, Social Security numbers, health insurance, and medical treatment information.
– The company detected the breach on January 22, contained it immediately, and launched an investigation with external cybersecurity experts.
– Xsolis reset passwords, increased system monitoring, accelerated employee security training, and strengthened credential management as additional security measures.
– Affected individuals are being notified by mail and offered a 12-month identity monitoring and theft restoration service through Kroll.
A phishing attack on healthcare technology firm Xsolis has compromised the sensitive data of nearly 1.4 million individuals, the company confirmed this week. While Xsolis reports no evidence that the stolen information has been misused, it is urging those affected to remain vigilant against potential targeted scams.
Xsolis, a U. S.-based company specializing in AI-powered software for the healthcare sector, serves over 600 hospitals and health insurers. Its flagship Dragonfly platform analyzes clinical data in real time to assist with utilization management, medical necessity reviews, patient status decisions, discharge planning, and reimbursement processes.
The breach was first detected on January 22, 2026, when the company noticed unauthorized activity on its network. An investigation revealed that the intrusion stemmed from a targeted phishing attack that occurred two days earlier, on January 20.
“On January 22, 2026, Xsolis became aware of unauthorized activity impacting a limited portion of the Xsolis environment resulting from a targeted phishing attack on January 20, 2026,” the company stated. “We immediately contained the activity and launched an investigation with the assistance of external cybersecurity experts.”
The attackers accessed files containing a range of personal and medical information, including names, addresses, dates of birth, health insurance details, Social Security numbers, and medical treatment records. According to a filing with the U. S. Department of Health and Human Services, the incident impacts 1,396,519 people.
In response, Xsolis has reported the breach to law enforcement, implemented additional security measures, and begun notifying affected individuals by mail. The company reset passwords for all users and key accounts, increased system monitoring, and completed the rollout of updated security protocols. It has also accelerated its employee security training program and strengthened credential management systems.
For affected minors, notifications will be sent to parents or legal guardians. Recipients will receive instructions on how to enroll in a 12-month identity monitoring and identity theft restoration service provided by Kroll.
(Source: BleepingComputer)
