• Home
  • cyber
  • iRhythm Technologies: iRhythm reports cybersecurity breach with protected health data accessed
cyber Breach

iRhythm Technologies: iRhythm reports cybersecurity breach with protected health data accessed

Jun 8, 2026 2 min read
iRhythm Technologies: iRhythm reports cybersecurity breach with protected health data accessed

iRhythm Discloses Data Breach Involving Patient and Proprietary Information

iRhythm Technologies (Nasdaq: IRTC), a manufacturer of long-term cardiac monitoring devices, revealed on June 8 that it detected unauthorized access to data stored on certain third-party-hosted business applications. The company immediately activated its cybersecurity response plan and engaged external experts to investigate and contain the threat.

By June 9, a threat actor contacted iRhythm, claiming to have exfiltrated sensitive data including proprietary information and protected health information (PHI) and demanded payment to prevent public disclosure. The following day, iRhythm confirmed that data had been stolen and classified the incident as material due to the volume of potentially affected records.

The breach, which resulted from social engineering tactics, did not impact iRhythm’s clinical or medical device systems, patient safety, manufacturing operations, or financial reporting. The company also confirmed that no financial account or payment card information was compromised. As of the latest filing, there is no evidence of ongoing unauthorized access, and iRhythm maintains that the incident is unlikely to have a material financial impact. The company holds cybersecurity insurance, though coverage for all potential losses is not guaranteed.

This incident adds to a growing trend of cyberattacks targeting medical technology firms. Earlier this year, Stryker suffered a wiper attack by an Iranian-backed hacktivist group in retaliation for U.S. and Israeli actions against Iran. Intuitive Surgical and Medtronic also reported breaches in March and April, respectively, though there is no indication that these incidents are connected.

Source: https://www.massdevice.com/irhythm-reports-cybersecurity-breach-health-data/

iRhythm Technologies, Inc. cybersecurity rating report: https://www.rankiteo.com/company/irhythm-technologies-inc-

"id": "IRH1781563219",
"linkid": "irhythm-technologies-inc-",
"type": "Breach",
"date": "6/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Medical Technology / Healthcare',
                        'name': 'iRhythm Technologies',
                        'type': 'Company'}],
 'attack_vector': 'Social Engineering',
 'data_breach': {'data_exfiltration': 'Yes',
                 'personally_identifiable_information': 'Yes (PHI)',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Proprietary information',
                                              'Protected Health Information '
                                              '(PHI)']},
 'date_detected': '2024-06-08',
 'date_publicly_disclosed': '2024-06-08',
 'description': 'iRhythm Technologies revealed unauthorized access to data '
                'stored on certain third-party-hosted business applications. A '
                'threat actor claimed to have exfiltrated sensitive data, '
                'including proprietary information and protected health '
                'information (PHI), and demanded payment to prevent public '
                'disclosure.',
 'impact': {'data_compromised': 'Proprietary information and protected health '
                                'information (PHI)',
            'identity_theft_risk': 'High (PHI exposed)',
            'operational_impact': 'No impact on clinical or medical device '
                                  'systems, patient safety, manufacturing '
                                  'operations, or financial reporting',
            'payment_information_risk': 'None (no financial account or payment '
                                        'card information compromised)',
            'systems_affected': 'Third-party-hosted business applications'},
 'investigation_status': 'Ongoing',
 'motivation': 'Extortion',
 'post_incident_analysis': {'root_causes': 'Social engineering tactics'},
 'ransomware': {'data_exfiltration': 'Yes', 'ransom_demanded': 'Yes'},
 'references': [{'date_accessed': '2024-06-08',
                 'source': 'iRhythm Technologies Filing'}],
 'regulatory_compliance': {'regulations_violated': ['HIPAA (potential)']},
 'response': {'communication_strategy': 'Public disclosure on June 8',
              'containment_measures': 'Investigation and containment initiated',
              'incident_response_plan_activated': 'Yes',
              'third_party_assistance': 'External cybersecurity experts '
                                        'engaged'},
 'title': 'iRhythm Discloses Data Breach Involving Patient and Proprietary '
          'Information',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.