Gainwell Technologies (“Gainwell”) has reported a data security incident involving the Connecticut Medicaid program, known as HUSKY, which is administered by the Connecticut Department of Social Services (“DSS”). Gainwell provides fiscal agent and account administration services for the program
Gainwell Technologies’s Data Breach Investigation
On March 25, 2026, DSS and Gainwell learned that an unauthorized third party had accessed a small number of Hartford HealthCare payment accounts on the HUSKY provider portal website. The unauthorized actor downloaded certain files containing patient information from the portal.
After discovering the activity, DSS and Gainwell launched an investigation with external cybersecurity experts and coordinated with federal law enforcement. The investigation found that the unauthorized activity began when the threat actor used compromised credentials belonging to Hartford HealthCare employees.
DSS and Gainwell stated that they secured the provider portal, terminated the unauthorized access, and confirmed that the incident had been contained. They are also implementing additional security enhancements designed to reduce the risk of similar incidents in the future.
When Did This Breach Occur?
According to DSS and Gainwell, the unauthorized activity began on March 4, 2026. The threat actor used compromised Hartford HealthCare employee credentials to access Hartford HealthCare user accounts on the HUSKY provider portal.
DSS and Gainwell learned of the unauthorized activity on March 25, 2026. After becoming aware of the incident, they launched an investigation with outside cybersecurity experts and worked with federal law enforcement.
Investigators determined that the unauthorized third party gained access to a small number of Hartford HealthCare payment accounts and downloaded files containing patient information. DSS and Gainwell stated that the attack has been successfully contained and that the unauthorized third party no longer has access to the portal.
On May 22, 2026, DSS and Gainwell began notifying affected individuals by postal mail. Individuals who believe they may be impacted were encouraged to call 1-855-744-4488 for more information.
What Information Was Breached?
DSS and Gainwell determined that the unauthorized third party accessed information relating to approximately 22,500 individuals. The impacted information varied by individual.
The information involved may have included full names, identification numbers associated with Hartford HealthCare accounts or Medicaid claims, dates of medical services, information about services received, and information about how those services were billed.
The incident also involved payment information, including amounts paid, as well as information about applicable non-Medicaid health insurance, including policy and group numbers.
DSS and Gainwell stated that this incident did not involve Social Security numbers or financial account information because that information was not available in the system the unauthorized third party accessed.
Although Social Security numbers and financial account information were reportedly not involved, the exposed information may still be sensitive because it relates to healthcare services, Medicaid claims, billing, and insurance coverage. Affected individuals should review their notice carefully to determine what information may have been involved in their specific case.
What You Can Do
If you received a notice about the Gainwell Technologies and DSS data security incident, you should review it carefully and follow the instructions for enrolling in any offered credit and identity monitoring services.
You should also monitor explanation of benefits statements, health insurance communications, Medicaid claim information, and account statements for suspicious activity or errors. If you see services you did not receive, incorrect billing information, or unfamiliar insurance activity, report it promptly.
Affected individuals should also remain alert for phishing emails, phone calls, or text messages that reference HUSKY, Hartford HealthCare, Gainwell, DSS, Medicaid, or the data breach. Scammers may attempt to use exposed information to make fraudulent messages appear legitimate.
Because the incident involved healthcare and insurance-related information, affected individuals should keep copies of their notice letters and any records showing time or money spent responding to the breach.
Individuals who believe they may be impacted can call 1-855-744-4488 for more information.
File a Data Breach Lawsuit Against Gainwell Technologies
If you received notice that your information was involved in the Gainwell Technologies data security incident, you may have legal rights. Companies and vendors that handle sensitive healthcare, insurance, and Medicaid-related information are expected to take reasonable steps to protect that data from unauthorized access.
The Gainwell incident involved unauthorized access to Hartford HealthCare user accounts on the HUSKY provider portal and the downloading of files containing patient information. The exposed information may have included names, Medicaid claim or Hartford HealthCare identification numbers, medical service dates, billing details, payment amounts, and non-Medicaid insurance policy and group numbers.
Exposure of healthcare and insurance information may create risks of medical identity theft, fraud, phishing, and other privacy-related harms. Data breach victims may be able to seek compensation for time spent responding to the breach, identity monitoring costs, fraud-related losses, and other damages.
Class Action U is investigating the Gainwell Technologies data security incident and helping affected individuals understand their rights. If you received a data breach notice involving Gainwell Technologies, contact Class Action U today to learn whether you may qualify to take legal action.
