ShinyHunters Threatens to Leak 8.8 TB of Stolen One Medical Patient Data After Breach
By
Steve Alder
Summary
Amazon-owned primary care provider One Medical disclosed a cybersecurity incident involving unauthorized access to a third-party file storage system containing archived patient data from One Medical Seniors (Iora Health). The ShinyHunters threat group has claimed responsibility, threatening to leak 8.8 terabytes of stolen data on the dark web. The breach was detected on June 13, 2026, and appears limited to a legacy system, though the full scope and confirmation of ShinyHunters' involvement remain pending.
Source
Key quotes
· 3 pulledThe ShinyHunters threat group added One Medical to its dark web data leak site and claimed to have exfiltrated 8.8 terabytes of data.
According to the One Medical website data breach notice, the unauthorized access was identified on June 13, 2026.
One Medical has confirmed a breach of a legacy system containing One Medical Seniors (Iora Health) data, but has not confirmed whether ShinyHunters was behind the attack.
You might also wanna read

Medtronic notifies customers impacted by ShinyHunters data breach
ShinyHunters defaces school Canvas login pages after Instructure data breach
Education tech company Instructure disclosed a data breach where hackers stole student names, emails, and teacher-student messages. The cybe
Google Confirms Data Breach in Salesforce CRM Theft Campaign by ShinyHunters
Google has become the latest victim of a data breach in a series of Salesforce CRM data theft attacks orchestrated by the ShinyHunters extor
PornHub Premium Member Data Stolen in Mixpanel Breach, Extortion Attempt by ShinyHunters
PornHub is being extorted by the ShinyHunters gang after hackers stole Premium member search and watch history data through a breach at anal

Vercel Cloud Platform Hacked via Compromised Third-Party AI Tool
Vercel, a major cloud development platform, was hacked by the ShinyHunters group, who stole employee data including names, email addresses,
Canvas offline after ShinyHunters data breach exposes student information
Canvas, the Instructure-owned learning management platform, is currently down after confirming a massive data breach exposing student names,

Comments
Sign in to join the conversation.
No comments yet. Be the first.