Healthcare AI Firm Xsolis Breach Exposes Data of 1.4 Million Patients
Healthcare AI company Xsolis disclosed a data breach affecting nearly 1.4 million individuals after a targeted phishing attack in January exposed personal and medical information.
Healthcare technology company Xsolis, Inc. has disclosed a data breach affecting nearly 1.4 million individuals, according to a filing with the US Department of Health and Human Services (HHS). The Tennessee-based firm, which provides utilization management and revenue cycle solutions for hospitals, health systems, and payers, revealed that unauthorized activity was detected on its systems on January 22, stemming from a targeted phishing attack two days earlier.
The breach exposed files containing personal and protected health information (PHI) that Xsolis received from its clients. The compromised data includes names, dates of birth, addresses, Social Security numbers, health insurance information, and medical treatment details. The HHS data breach tracker now lists the incident as affecting 1,396,519 individuals.
Xsolis published a data security notice in early June, but the full scale of the incident became clearer only after the HHS disclosure. The company stated it is not aware of any actual or attempted misuse of the stolen information. No known ransomware group has claimed responsibility for the attack, and SecurityWeek has reached out to Xsolis for comment on whether an extortion attempt occurred.
The breach underscores the persistent vulnerability of healthcare data aggregators, which hold vast troves of sensitive patient information. Xsolis processes data from numerous healthcare providers, making it an attractive target for attackers seeking to monetize medical records. The incident follows a pattern of large-scale healthcare breaches, such as the DentaQuest incident affecting 2.6 million accounts.
Xsolis is in the process of notifying affected individuals and regulators. The company has not disclosed specific remediation steps beyond the initial detection and response. Healthcare organizations that rely on Xsolis's services may need to reassess third-party risk management practices in light of this incident.
The breach highlights the growing threat of phishing attacks targeting healthcare technology vendors. As AI-driven healthcare analytics become more prevalent, the concentration of sensitive data in third-party platforms creates new attack surfaces. Regulators and industry groups are likely to scrutinize Xsolis's security posture and response timeline in the coming months.