Loading
Yanuki
ARTICLE DETAIL
Hims & Hers Discloses Data Breach After Social Engineering Attack | Project Glasswing: Securing Critical Software for the AI Era | Project Glasswing: AI Secures Critical Software | Bitcoin Depot Suffers $3.6 Million Crypto Heist | FBI Extracts Deleted Signal Messages: How to Protect Your Privacy | Chinese Supercomputer Hack: Data Breach Exposes Sensitive Information | Eurail Data Breach Impacts Over 300,000 U.S. Individuals | Massive Data Breach at Chinese Supercomputing Hub Exposes Sensitive Military and Research Data | Closing Identity Gaps Before AI Exploits Enterprise Risk | Hims & Hers Discloses Data Breach After Social Engineering Attack | Project Glasswing: Securing Critical Software for the AI Era | Project Glasswing: AI Secures Critical Software | Bitcoin Depot Suffers $3.6 Million Crypto Heist | FBI Extracts Deleted Signal Messages: How to Protect Your Privacy | Chinese Supercomputer Hack: Data Breach Exposes Sensitive Information | Eurail Data Breach Impacts Over 300,000 U.S. Individuals | Massive Data Breach at Chinese Supercomputing Hub Exposes Sensitive Military and Research Data | Closing Identity Gaps Before AI Exploits Enterprise Risk

Cybersecurity / Breaches

Hims & Hers Discloses Data Breach After Social Engineering Attack

Hims & Hers, a telehealth company offering weight-loss and sexual health products, recently disclosed a data breach affecting its third-party customer service platform. The breach, stemming from a sophisticated social engineering attack, po...

Hims & Hers says limited data stolen in social engineering attack
Share
X LinkedIn

what is a data breach
Hims & Hers Discloses Data Breach After Social Engineering Attack Image via Cybersecurity Dive

Key Insights

  • **Social Engineering Attack:** Hackers gained unauthorized access to Hims & Hers' customer service platform between February 4 and 7, 2026.
  • **Data Exposure:** Customer names, contact information, and potentially other personal data submitted in support tickets were compromised.
  • **Limited Scope:** Medical records and communications with healthcare providers were reportedly not accessed during the breach.
  • **Regulatory Filing:** The company disclosed the breach in a filing with the California Attorney General’s office, as required by California law for breaches affecting 500 or more residents.

In-Depth Analysis

The Hims & Hers data breach underscores the growing threat of social engineering attacks, where hackers manipulate employees into granting access to systems. In this case, the attackers targeted the company's third-party customer service platform, gaining access to support tickets containing customer information.

While Hims & Hers asserts that medical records were not compromised, the nature of customer support interactions means that sensitive information related to a person's account and healthcare may have been exposed. The company is currently reviewing its internal policies and procedures to prevent similar incidents in the future and has notified law enforcement.

This breach follows a trend of increasing attacks on customer support and ticketing systems, as seen with the Discord data breach last year. These systems often contain a wealth of customer data, making them prime targets for financially motivated hackers seeking to extort companies for ransom.

Read source article

FAQ

- **Q: What information was compromised in the Hims & Hers data breach?

**

- **Q: Were medical records accessed during the breach?

**

- **Q: What steps is Hims & Hers taking to prevent future breaches?

**

Takeaways

  • Be cautious when sharing personal information through customer support channels.
  • Monitor your accounts for suspicious activity.
  • Understand the security measures implemented by telehealth providers to protect your data.
  • This breach highlights the importance of data security and privacy, even when using customer service platforms.

Discussion

Do you think telehealth companies are doing enough to protect customer data? Share your thoughts in the comments below!

Share this article with others who need to stay ahead of this trend!

Sources

Hims & Hers says limited data stolen in social engineering attack Telehealth giant Hims & Hers says its customer support system was hacked Hims & Hers warns of data breach after Zendesk support ticket breach

Disclaimer

This article was compiled by Yanuki using publicly available data and trending information. The content may summarize or reference third-party sources that have not been independently verified. While we aim to provide timely and accurate insights, the information presented may be incomplete or outdated.

All content is provided for general informational purposes only and does not constitute financial, legal, or professional advice. Yanuki makes no representations or warranties regarding the reliability or completeness of the information.

This article may include links to external sources for further context. These links are provided for convenience only and do not imply endorsement.

Always do your own research (DYOR) before making any decisions based on the information presented.

Related Stories

Cybersecurity / AI Security

Project Glasswing: Securing Critical Software for the AI Era

Project Glasswing, spearheaded by Anthropic, is a collaborative initiative bringing together major tech companies to enhance cybersecurity using AI. This project aims to address the increasing threat of AI-driven cyberattacks by proactively...

Opinion | It’s the End of the Internet as We Know It

Cybersecurity / AI

Project Glasswing: AI Secures Critical Software

Project Glasswing, spearheaded by Anthropic, is a collaborative initiative uniting tech giants like Amazon, Apple, Microsoft, and Google to leverage AI in bolstering cybersecurity. The project addresses the increasing threat of AI-driven cy...

Project Glasswing: Securing critical software for the AI era

Cybersecurity / Financial Threats

Bitcoin Depot Suffers $3.6 Million Crypto Heist

Bitcoin Depot, a prominent crypto ATM operator, has suffered a significant security breach resulting in the loss of $3.6 million in Bitcoin. This incident underscores the increasing risks faced by cryptocurrency platforms and the importance...

$3.6 Million Crypto Heist Targets Bitcoin Depot

Cybersecurity / Data Privacy

FBI Extracts Deleted Signal Messages: How to Protect Your Privacy

The FBI has discovered a method to extract deleted Signal messages from iPhones, raising privacy concerns for users of the encrypted messaging app. This article explains how they did it and, more importantly, how you can prevent it.

FBI Extracts Suspect’s Deleted Signal Messages Saved in iPhone Notification Database

Cybersecurity / Data Breach

Chinese Supercomputer Hack: Data Breach Exposes Sensitive Information

A significant data breach has allegedly compromised a state-run Chinese supercomputer, potentially exposing over 10 petabytes of sensitive information, including classified defense documents and missile schematics. This incident raises conc...

A hacker has allegedly breached one of China’s supercomputers and is attempting to sell a trove of stolen data

Cybersecurity / Data Breach

Eurail Data Breach Impacts Over 300,000 U.S. Individuals

A significant data breach at Eurail B.V. has exposed the personal information of over 300,000 individuals in the United States. The breach, which occurred between late December 2025 and early January 2026, involved unauthorized access to Eu...

300,000 People Impacted by Eurail Data Breach

Cybersecurity / AI Security

Closing Identity Gaps Before AI Exploits Enterprise Risk

CISOs face a growing paradox: identity programs are maturing, yet enterprise risk is increasing. Disconnected applications and the rise of AI agents create vulnerabilities that can be exploited, leading to data breaches and compliance issue...

[Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk