Skip to main content

Cognisight Data Breach Investigation

The Lyon Firm is investigating Cognisight data breach claims on behalf of victims and plaintiffs nationwide. Our data privacy lawyers are currently involved in numerous data breach cases, including those connected with the MOVEit file transfer software attack. Contact our legal team to learn more about your best options moving forward following a data security incident.

What Happened at Cognisight?

Cognisight, LLC has filed a notice of data breach with the Attorney General of California on behalf of San Diego PACE after discovering that a vulnerability within MOVEit may have compromised a large number of consumers’ personal data. In the filed notice, Cognisight explains that the vulnerability resulted in an unauthorized party being able to access personal information and protected health information.

On October 13, 2023,  the company started sending out notification letters to individuals whose information was potentially affected by the data breach. If you received a data breach notification from Cognisight, it is important to understand you may be at an increased risk of fraud and medical identity theft. Our experienced data privacy lawyers can assist you in filing a class action claim or answer any questions you may have.

Data breach victims should remain vigilant for signs of identity theft or fraud by reviewing financial accounts, statements and credit reports for suspicious activity. Incidents of data theft and identity theft have been on the rise, placing millions of Americans at risk. Companies responsible for collecting and storing your personal data have a duty to protect it from cybercriminals.

After learning that personal data was accessed by an unauthorized party, Cognisight hired a third party to review the compromised files. The investigation is ongoing and breached information varies depending on the individual.

More About Cognisight

Cognisight provides healthcare management services to health plans and other entities, including San Diego PACE. They serve the needs of Medicare Advantage plans, commercial health insurers, accountable care organizations, PACE programs, Medicaid managed care plans, and independent practice associations.

Based in Rochester, New York, the company focuses on providing risk adjustment services such as analytics, chart reviews, health assessments, RADV support and initial validation audits. San Diego PACE and other associated organizations provided Cognisight with member data.

What Information Has Been Compromised?

Cognisight has sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.

On the company’s website, a data security notice regarding the MOVEit incident lists the following entities as being potentially impacted:

  • AltaMed
  • ArchCare
  • Blue Cross and Blue Shield of Louisiana
  • Mercy LIFE West Philadelphia
  • Pacific PACE
  • Saint Francis LIFE
  • Saint Joseph PACE
  • Sequoia PACE
  • Stockton PACE
  • Trinity Health LIFE New Jersey
  • Vantage

Contact our attorneys for a free and confidential consultation. We can help you learn more about the best steps forward and you may consider legal action should you feel inclined. Many healthcare organizations and companies that serve them have been negligent in establishing proper IT security, and can be held accountable when data breach incidents occur.