Medtronic corporate network breach exposes over 9 million records, confirmed by vendor
Summary
Hide ▲
Show ▼
Medical device manufacturer Medtronic disclosed a network intrusion targeting corporate IT systems, with the data extortion group ShinyHunters claiming theft of over 9 million records containing personally identifiable information (PII) and terabytes of internal corporate data. Medtronic asserts no impact to medical products, patient safety, customer networks, or business operations, though an investigation into potential data exposure is ongoing. The incident was disclosed publicly by Medtronic and remains unverified by external sources beyond the actor’s claims.
Timeline
-
27.04.2026 16:50 1 articles · 1h ago
Medtronic acknowledges corporate network breach with ShinyHunters claiming 9M+ records theft
Medtronic disclosed a security incident affecting its corporate IT systems after the ShinyHunters extortion group claimed responsibility for the breach and theft of over 9 million records containing PII and terabytes of internal data. The actor listed Medtronic as a victim on April 18, demanding ransom by April 21, and remains unconfirmed. Medtronic asserts no impact to medical products or customer networks and states that an investigation into potential data access is underway.
Show sources
- Medtronic confirms breach after hackers claim 9 million records theft — www.bleepingcomputer.com — 27.04.2026 16:50
Information Snippets
-
Medtronic disclosed an intrusion into 'certain corporate IT systems' without impact to medical products, patient safety, or customer networks.
First reported: 27.04.2026 16:501 source, 1 articleShow sources
- Medtronic confirms breach after hackers claim 9 million records theft — www.bleepingcomputer.com — 27.04.2026 16:50
-
ShinyHunters claimed responsibility for the breach, asserting theft of over 9 million records containing PII and terabytes of corporate data.
First reported: 27.04.2026 16:501 source, 1 articleShow sources
- Medtronic confirms breach after hackers claim 9 million records theft — www.bleepingcomputer.com — 27.04.2026 16:50
-
The threat actor listed Medtronic on its victim site on April 18 and set a deadline of April 21 for a ransom demand before publishing the data.
First reported: 27.04.2026 16:501 source, 1 articleShow sources
- Medtronic confirms breach after hackers claim 9 million records theft — www.bleepingcomputer.com — 27.04.2026 16:50
-
Medtronic states its corporate IT, product, and manufacturing networks are segmented, and customer hospital networks are managed independently.
First reported: 27.04.2026 16:501 source, 1 articleShow sources
- Medtronic confirms breach after hackers claim 9 million records theft — www.bleepingcomputer.com — 27.04.2026 16:50
-
The company is conducting an investigation to determine whether personal data was accessed and will notify affected individuals if confirmed.
First reported: 27.04.2026 16:501 source, 1 articleShow sources
- Medtronic confirms breach after hackers claim 9 million records theft — www.bleepingcomputer.com — 27.04.2026 16:50