Insightin Health, Inc. has publicly addressed a recent data privacy incident that raised concerns about the security of sensitive information. The organization recognizes the importance of data confidentiality and is actively working to assist individuals who may have been affected by the breach.
In September 2025, Insightin detected suspicious activity within its network following unauthorized access by an intruder who exploited a security vulnerability in a third-party application. "We take the confidentiality, privacy, and security of the data we maintain very seriously," stated a representative from Insightin. The company responded swiftly by launching an investigation with the help of third-party forensic specialists to understand the extent of the breach.
"We take the confidentiality, privacy, and security of the data we maintain very seriously,"
The investigation revealed that certain files on a limited number of Insightin’s servers were accessed or copied by the unauthorized actor between September 17 and September 23, 2025. Though the incident did not affect the company's capability to serve its clients, it warranted immediate containment measures and a thorough analysis of the compromised files.
Looking Ahead
Looking Ahead
Looking Ahead
"Although we have seen no evidence of identity theft or fraud in connection with this incident, we are supporting potentially affected individuals with access to complimentary credit monitoring services," the representative added. Insightin is dedicated to implementing additional safeguards to strengthen their defenses against similar incidents in the future.
"Although we have seen no evidence of identity theft or fraud in connection with this incident, we are supporting potentially affected individuals with access to complimentary credit monitoring services,"
By the Numbers
By the Numbers
As the review progressed, it was determined that data potentially impacted by the breach included information related to services provided to a select group of healthcare clients. Affected data could involve member names, dates of birth, and identifiers assigned by health insurance providers. On limited occasions, contract numbers and Medicare Beneficiary Identifiers issued by the Centers for Medicare and Medicaid were also potentially exposed. However, it is important to note that not every individual had all these data points compromised.
Impact and Legacy
To support those who may have been impacted, Insightin has taken the initiative to notify individuals on behalf of its affected clients. Customers with concerns or who seek further clarification regarding the incident can contact Insightin at 844-784-5928, Monday through Friday from 8:00 AM to 8:00 PM Eastern Time.
In light of the incident, Insightin urges potentially affected individuals to remain vigilant against identity theft and fraud. "We encourage individuals to review their account statements and monitor their credit reports for any suspicious activities," the representative advised. Consumers are entitled to one free credit report annually from the three major credit reporting bureaus: Equifax, Experian, and TransUnion. To obtain a free credit report, individuals can visit www.annualcreditreport.com.
"We encourage individuals to review their account statements and monitor their credit reports for any suspicious activities,"
Furthermore, individuals have the right to place a fraud alert on their credit files at no cost. An initial fraud alert lasts one year and requires businesses to verify identity before extending new credit. In cases of identity theft, consumers may opt for an extended fraud alert, which can last up to seven years. "Consumers can also choose to freeze their credit report, which prevents the release of their credit information," the representative added.
"Consumers can also choose to freeze their credit report, which prevents the release of their credit information,"
This data privacy incident serves as a critical reminder of the importance of cybersecurity best practices and ongoing vigilance in protecting personal information. As Insightin implements measures to prevent future breaches, stakeholders will be monitoring the situation to ensure comprehensive safety and privacy standards are upheld.
