Hims & Hers Data Breach via Zendesk Support Tickets
▼ Summary
– Hims & Hers Health suffered a data breach after unauthorized access to support tickets on its third-party customer service platform.
– The breach occurred from February 4 to February 7, 2026, and exposed personal information like names and contact details from the tickets.
– The company confirmed that no medical records or doctor communications were compromised in this incident.
– The breach was attributed to the ShinyHunters gang, which used a compromised Okta account to access the company’s Zendesk instance.
– Hims & Hers is offering impacted individuals 12 months of free credit monitoring and advising them to watch for phishing and suspicious activity.
A major data security incident has impacted the prominent telehealth provider Hims & Hers, stemming from unauthorized access to its third-party customer service platform. The company confirmed that a breach occurred in early February 2026, compromising a number of support tickets that contained customer information. This event highlights the persistent cybersecurity risks associated with third-party software vendors in the digital healthcare sector.
Company officials stated they detected suspicious activity on February 5, 2026, and immediately launched an investigation. The probe revealed that from February 4 to February 7, certain tickets sent to the customer service team were accessed without authorization. By March 3, the investigation concluded that hackers had obtained these support tickets, which in some cases included personal data. The potentially exposed information consists of customer names, contact details, and other unspecified data related to the individual support requests. The company emphasized that medical records and confidential doctor-patient communications remained secure and were not part of this breach.
According to cybersecurity sources, the attack was carried out by the ShinyHunters extortion gang as part of a broader campaign. The threat actors reportedly compromised Okta single sign-on accounts to gain unauthorized entry into various third-party cloud and software services. In this instance, they used a compromised Okta account to access the company’s Zendesk instance, making off with millions of support tickets. This breach vector mirrors other recent high-profile incidents, including attacks on the DIY retailer ManoMano and the streaming service Crunchyroll earlier this year, both of which also involved compromised Zendesk platforms.
In response to the incident, Hims & Hers is offering 12 months of free credit monitoring to all affected individuals. The company is advising customers to exercise increased caution regarding unsolicited communications, which could be phishing attempts, and to regularly review their account statements and credit reports for any unusual activity. While the total number of impacted customers has not been publicly disclosed, the breach underscores the critical importance of robust third-party vendor security in protecting sensitive customer data. The company has not provided further comment on the scale of the breach beyond the mandated regulatory notifications.
(Source: BleepingComputer)
