THE Oncology Institute reported a data breach related to a third-party vendor, confirmed on May 20, 2026. The breach potentially exposed patient information following a 2025 cyberattack, linked to the software provider, TriZetto. Despite the investigation ongoing since November 2025, unauthorized access was detected, impacting patients’ personal and health data, although no financial information was compromised.
The incident may also affect other healthcare providers, with no claims of responsibility from any ransomware group. The Oncology Institute has since implemented additional security measures.