Digital healthcare company iRhythm Holdings has disclosed a data breach in which hackers accessed patients' personal and health information stored on third-party-hosted business applications.
The breach exposed sensitive data through compromised cloud-based systems used by the cardiac monitoring device maker. iRhythm discovered unauthorized access to patient records containing personal identifiers and medical information.
The company said it is investigating the incident and notifying affected patients. iRhythm is working with cybersecurity experts and law enforcement to determine the full scope of the breach.
iRhythm manufactures wearable cardiac monitoring devices and cloud-based software platforms used by healthcare providers. The breach highlights ongoing security challenges facing digital health companies managing sensitive patient data across third-party infrastructure.
The company has not disclosed the number of affected patients or provided a timeline for when the breach occurred. iRhythm advised patients to monitor accounts for suspicious activity and recommended credit monitoring services.
A developer has uncovered a concerning practice where accessing previously uploaded images requires payment. The discovery highlights potential data monetization tactics in modern web services.
Kodak has confirmed a security breach after the ShinyHunters extortion gang gained access to company data. The imaging company is working with external cybersecurity experts to investigate the incident.
Cyber crimes now account for roughly one-third of all recorded crimes in some Asian countries, with scams emerging as the most prevalent and costly category, according to a new Interpol report.