How did the Xsolis data breach occur?

Through a targeted phishing attack on January 20, 2026

Data Breach Exposes Sensitive Info of 1.4M Individuals at Xsolis

Q: What type of information was exposed in the Xsolis data breach?

Names, addresses, dates of birth, health insurance information, Social Security numbers, and medical treatment information

Q: What measures has Xsolis taken to prevent similar events in the future?

The company reported the incident to law enforcement and implemented additional security measures

Healthcare tech firm Xsolis, developer of AI-powered software used by 600 hospitals and health insurers, suffered a data breach due to a targeted phishing attack on January 20, 2026.

A major data breach has hit healthcare technology company Xsolis, exposing sensitive information of nearly 1.4 million individuals. The breach occurred after a targeted phishing attack on January 20, 2026, which gave attackers access to Xsolis's network.

What Happened

Xsolis, a U.S.-based healthcare firm that develops AI-powered software used by over 600 hospitals and health insurers, detected unauthorized activity on its network due to the phishing attack. The company immediately contained the breach and launched an investigation with the assistance of external cybersecurity experts.

According to Xsolis's data breach notice, attackers accessed certain files containing information that may include names, addresses, dates of birth, health insurance information, Social Security numbers, and medical treatment information. While the company is not aware of any attempted misuse of the exposed information, it is warning affected individuals to stay alert for potential targeted attacks.

Xsolis has reported the incident to law enforcement and implemented additional security measures to prevent similar events in the future. The company is notifying potentially affected individuals by mail, providing details of the breach along with guidance on how to protect their information, including access to free credit monitoring and identity protection services.

Background and Context

Xsolis's flagship platform, Dragonfly, analyzes clinical data in real-time to help healthcare providers and payers make more informed decisions on patient care and insurance coverage. The company has been ranked Best in KLAS for physician advisory services for five years in a row, serving healthcare organizations across the country.

The breach is not an isolated incident, as third-party data breaches remain a significant threat to healthcare organizations. According to research from managed IT and security services vendor Omega Systems, 85% of respondents said their organizations experienced at least one operational disruption caused by a third-party vendor in the past year.

Furthermore, 24% of respondents named "not knowing their vendor network's security posture" as one of their top IT concerns, highlighting the prevalence of third-party data breaches and the challenges with ongoing vendor risk management. The report stated that "the third-party attack surface is wide, growing, and under-monitored."

Why It Matters to the Industry

The Xsolis breach serves as a reminder of the importance of robust cybersecurity measures in the healthcare industry. With the increasing use of AI-powered software and cloud-based platforms, healthcare organizations are becoming more vulnerable to data breaches.

The breach also highlights the need for better vendor risk management practices. Healthcare organizations must ensure that their vendors have adequate security measures in place to protect sensitive information. This includes regular security audits, penetration testing, and incident response planning.

Furthermore, the breach underscores the importance of employee education and awareness. Phishing attacks are often successful because employees are not adequately trained to recognize and report suspicious emails. Xsolis's experience serves as a cautionary tale for healthcare organizations to prioritize cybersecurity training and awareness programs.

What Comes Next

Xsolis is taking steps to prevent similar breaches in the future, including implementing additional security measures and accelerating its employee education program. The company has also established a toll-free call center to answer questions about the incident and provide access to free credit monitoring and identity protection services for affected individuals.

Affected individuals are advised to stay vigilant against identity theft and fraud by regularly reviewing their credit reports, account statements, and explanation of benefits for suspicious activity or errors. They may also place free fraud alerts on their credit files, with extended alerts available for identity theft victims for up to seven years.

Key Facts

Xsolis suffered a data breach exposing sensitive information of nearly 1.4 million individuals.
The breach occurred after a targeted phishing attack on January 20, 2026.
Xsolis detected unauthorized activity on its network due to the phishing attack and immediately contained the breach.
Attackers accessed certain files containing information that may include names, addresses, dates of birth, health insurance information, Social Security numbers, and medical treatment information.
Xsolis reported the incident to law enforcement and implemented additional security measures to prevent similar events in the future.