Xsolis Reports Data Security Incident Affecting Personal Health Information
Severity: Medium (Score: 51.1)
Sources: Morningstar, www.prnewswire.com
Published: · Updated:
Keywords: xsolis, provides, notice, data, security, incident, franklin
Severity indicators: ot
Summary
Xsolis, Inc. announced a data security incident on June 5, 2026, involving unauthorized access to its environment due to a phishing attack on January 20, 2026. The breach may have compromised personal and protected health information of certain individuals, including names, addresses, dates of birth, health insurance information, Social Security numbers, and medical treatment details. Xsolis became aware of the incident on January 22, 2026, and has since contained the unauthorized access, isolated affected accounts, and launched an investigation with external cybersecurity experts. As of the notice date, there is no evidence of actual misuse of the compromised information. Xsolis is offering complimentary identity monitoring services to potentially affected individuals. The company has also reviewed and enhanced its security protocols to align with industry standards. Key Points: • Xsolis experienced a data breach due to a targeted phishing attack. • Personal health information of certain individuals may have been compromised. • Complimentary identity monitoring services are being offered to affected individuals.
Detailed Analysis
**Impact** The incident affected a limited portion of Xsolis’s environment, a healthcare vendor providing case and utilization management services. Personal and protected health information potentially exposed includes names, addresses, dates of birth, health insurance details, Social Security numbers, and medical treatment information. No specific number of affected individuals or geographic scope beyond the U.S. location (Franklin, Tenn.) was provided. There is no known misuse or attempted misuse of the data as of the latest update. **Technical Details** The attack vector was a targeted phishing attack on January 20, 2026, leading to unauthorized access until January 22, 2026. The attacker acquired a limited number of files from portions of the Xsolis environment. No malware, CVEs exploited, or specific tools used were disclosed. The kill chain stages identified include initial access via phishing, followed by data exfiltration. No indicators of compromise (IOCs) were provided. **Recommended Response** Organizations should review and reinforce phishing detection and prevention controls, including user training and email filtering. Monitor for unusual access patterns and data exfiltration attempts, especially in healthcare vendor environments. Ensure incident response plans include rapid containment and forensic investigation capabilities. No specific patches or IOCs were provided to implement or block.
Source articles (2)
- Xsolis, Inc. Provides Notice of Data Security Incident — Morningstar · 2026-06-05
FRANKLIN, Tenn. , June 5, 2026 /PRNewswire/ -- Xsolis, Inc. ("Xsolis"), a vendor that provides case and utilization management services to healthcare organizations, today announced that it recently ex… - Xsolis Inc Provides Notice Of Data Security Incident 302791875 — www.prnewswire.com · 2026-06-06
FRANKLIN, Tenn. , June 5, 2026 /PRNewswire/ -- Xsolis, Inc. ("Xsolis"), a vendor that provides case and utilization management services to healthcare organizations, today announced that it recently ex…
Timeline
- 2026-01-20 — Phishing attack initiated: A targeted phishing attack led to unauthorized access in Xsolis's environment.
- 2026-01-22 — Unauthorized access detected: Xsolis became aware of unauthorized activity and began containment measures.
- 2026-06-05 — Data security incident announced: Xsolis publicly disclosed the data security incident and its potential impact on individuals.
Related entities
- Data Breach (Attack Type)
- Phishing (Attack Type)
- Healthcare (Industry)
- T1566 - Phishing (Mitre Attack)