Overview
- Ultrahuman says an unauthorized actor accessed an internal analytics system on March 27, 2026 using credentials taken from a malware-infected employee laptop.
- The company reports the attacker had read-only access and that contact details, account information, order history and some wellness data for about 0.1% of users were viewable.
- Ultrahuman says no passwords, payment card data, production systems or Ring devices were compromised and that it has found no evidence of data misuse so far.
- The startup detected the intrusion within hours, took the affected system offline, revoked access, notified impacted customers and regulators, and has rolled out device hardening, increased audits and anomaly detection.
- Security experts say the incident highlights broader risks in storing wearable health data centrally and raises phishing and regulatory transparency concerns as the company continues its investigation.