Cognisight Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Cognisight, LLC regarding its recent data breach. The Cognisight data breach involved sensitive personal identifiable information belonging an undetermined number of individuals.


Cognisight is a healthcare solutions vendor specializing in risk adjustment solutions for healthcare payers and providers.2 Founded in 2006, Cognisight is a subsidiary of the Greater Rochester Independent Practice Association and a part of Rochester Regional Health.2 Using risk-based payment methodologies, Cognisight serves the needs of Medicare Advantage plans, commercial health insurers, accountable care organizations, PACE programs, Medicaid managed care plans, and independent practice associations. Included in Cognisight’s risk-adjustment services are data and technology, medical record acquisition, audit support, medical records review, health assessments, and education and training.


On May 31, 2023, Cognisight discovered that it had experienced a data breach in which the sensitive personal identifiable information in its systems may have been accessed and acquired. Through its investigation, Cognisight determined that an unauthorized actor may have accessed and acquired this sensitive information through a vulnerability in the MOVEit file sharing platform. Recently, Cognisight posted a notice of the incident on its website. In the coming weeks, Cognisight plans to work with its covered entities to contact individuals whose information may have been impacted. Cognisight’s covered entities include:

  • AltaMed
  • ArchCare
  • Blue Cross and Blue Shield of Louisiana
  • Mercy LIFE West Philadelphia
  • Pacific PACE
  • Saint Francis LIFE
  • Saint Joseph PACE
  • San Diego PACE
  • Sequoia PACE
  • Stockton PACE
  • Trinity Health LIFE New Jersey
  • Vantage

If you believe you have been impacted by the Cognisight data breach:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or

If you were impacted by Cognisight data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Change passwords and security questions for online accounts;
  3. Regularly review account statements for signs of fraud or unauthorized activity;
  4. Monitor credit reports for signs of identity theft; and
  5. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: