Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

IRhythm Holdings hit by cyberattack

Incident
First reported
Last updated
Happening score
H score 31
1 unique sources, 1 articles

Summary

Hide ▲

iRhythm Holdings disclosed a data breach after attackers stole patients' personal and health information from third-party-hosted business applications, creating material privacy and extortion risk. The company said a threat actor contacted it on June 9, 2026 demanding payment to prevent disclosure, and iRhythm later confirmed that data was exfiltrated. iRhythm also said the breach has no known impact on its products, clinical or medical device systems, or financial reporting systems.

Related Happenings

IRhythm patient data exfiltration from third-party business applications

Data Leak
H score34 First: 16.06.2026 09:31 Last: 16.06.2026 09:31 Sources 1

How related: Digital healthcare company iRhythm Holdings has disclosed a data breach after hackers stole patients' personal and health information stored on third-party-hosted business applications.

About this happening: iRhythm Holdings disclosed a **data breach** after attackers exfiltrated **patients' personal and health information** from **third-party-hosted business applications**, creating...

Open Happening

Timeline

  1. 16.06.2026 09:31 1 articles · 2h ago

    Threat actor demands ransom from iRhythm Holdings

    Exploitation Observed

    A threat actor contacted iRhythm Holdings on June 9, 2026, claimed to have obtained sensitive information including proprietary data and patient protected health information, and demanded payment to avoid public disclosure. iRhythm said the access path involved social engineering against third-party-hosted business applications.

    Show sources
    Open in new tab
  2. 16.06.2026 09:31 1 articles · 2h ago

    iRhythm Holdings determines breach is material

    Victim Impact Update

    On June 10, 2026, iRhythm Holdings determined the incident was material in light of the volume of potentially affected data. The company later confirmed that certain data had been exfiltrated from the third-party-hosted business applications.

    Show sources
    Open in new tab
  3. 16.06.2026 09:31 2 articles · 2h ago

    iRhythm Holdings discloses data breach in SEC filing

    Initial Disclosure

    On June 16, 2026, iRhythm Holdings disclosed the breach in an SEC filing, said it had discovered the incident one day earlier, launched an investigation with external cybersecurity experts, and activated its cybersecurity response plan to contain the breach.

    Show sources
    Open in new tab