Cyber Incident Victim: Conduent Health

On October 29, 2020, an unauthorized individual gained access to an account associated with Wisconsin’s Medicaid program, potentially compromising participant information. The incident was disclosed by Gainwell Technologies, the entity responsible for managing the program’s data. Exposed information included participant names, Medicaid member identification numbers, and billing codes corresponding to services received. The unauthorized access occurred through a compromised account, though the specific method of initial compromise or duration of access beyond October 29 was not detailed in public notifications. The breach notification did not specify the exact number of affected individuals but confirmed the incident impacted a subset of Wisconsin Medicaid participants. No evidence suggested broader system infiltration beyond the compromised account.

Gainwell Technologies issued a public release acknowledging the incident, though no further technical details about containment or forensic investigations were disclosed. The company’s involvement in this breach occurred alongside a separate incident involving TennCare (Tennessee’s Medicaid program), where mismailings exposed participant data. While both incidents involved Gainwell and occurred contemporaneously, the Wisconsin breach was explicitly described as unrelated to the Tennessee mismailing issue. The Wisconsin Medicaid breach primarily risked exposing sensitive healthcare billing information linked to individual identities, potentially enabling fraud or targeted phishing attempts against affected participants. No reports of actual misuse of the data or additional attacker actions beyond the account access were confirmed in available sources.