Home > Security > Security News

Ultrahuman Data Breach: Hackers Accessed Wellness Data via Internal Analytics Tool

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
data_breach
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Malware-Driven Breach: Hackers accessed Ultrahuman customer wellness data using credentials stolen from a malware-infected employee laptop.
  • Limited Scope Confirmed: Ultrahuman said no passwords, payment information, production systems, or Ultrahuman Ring devices were compromised.
  • Other Impacted Data: The announcement said that contact details and transaction history may have been exposed in the incident.

Ultrahuman, the India-based wearable health tech startup known for its Ring Air and Ring Pro smart rings, has disclosed a security breach in which hackers gained unauthorized access to customer wellness data. The company informed affected customers by email that the breach occurred on March 27 and involved a system used for internal analytics.

How the Ultrahuman Breach Occurred

The official Ultrahuman data breach announcement states that an unauthorized third party gained read-only access to an internal analytics system. The company confirmed that no passwords, payment information, production systems, or Ultrahuman Ring devices were compromised, but did not specify whether any customer data was exfiltrated

While it varied by account, the announcement said the dataset that was accessed contained:

The company told TechCrunch that the attackers accessed the internal analytics system using credentials stolen from a malware-infected employee laptop, adding that the wellness data belonging to about 0.1% of users was accessed. 

Regulatory Notification and Disclosure Timeline

The company said it detected the intrusion promptly, took the affected system offline, and revoked all access. Ultrahuman has stated that it has notified the relevant regulatory authorities.

In other recent news, Argamal RAT targets hentai gamers via trojanized games. Last month, a NYC Health + Hospitals data breach exposed the sensitive biometrics of 1.8 million individuals.

Infostealers are a common attack vector. Last week, FortiClient EMS was exploited via CVE-2026-35616 to deploy EKZ Infostealer. A January Infostealers by Hudson Rock report said that dozens of global companies were breached via infostealer credentials.

Add a Comment
Related
Argamal RAT Targets Hentai Gamers via Trojanized Games, Kaspersky Reports
Kali365 PhaaS Expands Targeting Microsoft, Okta, DocuShare, AWS, MAX Messenger
RAlord Affiliate Banned for Breaking CIS Ransomware Rule, Infecting Eriell Group
WeedHack Malware Infects 116,000+ Minecraft Systems via Fake Mods
Spain Police Arrests Suspect in Massive Doxing Campaign Against State Officials
Man - Laptop - Cloud - Warning - Password - Security
Dashlane Discloses Brute-Force Attack Bypassing 2FA Protocols
Most Popular
ExpressVPN Apple TV App Update Adds New Features, Tools
ExpressVPN Updates Apple TV App With New Home Screen, More VPN Protocols, and Built-In Speed Test
Argamal RAT Targets Hentai Gamers via Trojanized Games, Kaspersky Reports
Kali365 PhaaS Expands Targeting Microsoft, Okta, DocuShare, AWS, MAX Messenger
RAlord Affiliate Banned for Breaking CIS Ransomware Rule, Infecting Eriell Group
WeedHack Malware Infects 116,000+ Minecraft Systems via Fake Mods
New Identity Battleground: Attackers Don’t Need to Break MFA, they Just Need a Help Desk
ExpressVPN Updates Apple TV App With New Home Screen, More VPN Protocols, and Built-In Speed Test
Argamal RAT Targets Hentai Gamers via Trojanized Games, Kaspersky Reports
Kali365 PhaaS Expands Targeting Microsoft, Okta, DocuShare, AWS, MAX Messenger
RAlord Affiliate Banned for Breaking CIS Ransomware Rule, Infecting Eriell Group
WeedHack Malware Infects 116,000+ Minecraft Systems via Fake Mods
New Identity Battleground: Attackers Don’t Need to Break MFA, they Just Need a Help Desk

Most Popular
ExpressVPN Apple TV App Update Adds New Features, Tools
ExpressVPN Updates Apple TV App With New Home Screen, More VPN Protocols, and Built-In Speed Test
Argamal RAT Targets Hentai Gamers via Trojanized Games, Kaspersky Reports
Kali365 PhaaS Expands Targeting Microsoft, Okta, DocuShare, AWS, MAX Messenger
RAlord Affiliate Banned for Breaking CIS Ransomware Rule, Infecting Eriell Group
WeedHack Malware Infects 116,000+ Minecraft Systems via Fake Mods
New Identity Battleground: Attackers Don’t Need to Break MFA, they Just Need a Help Desk
ExpressVPN Updates Apple TV App With New Home Screen, More VPN Protocols, and Built-In Speed Test
Argamal RAT Targets Hentai Gamers via Trojanized Games, Kaspersky Reports
Kali365 PhaaS Expands Targeting Microsoft, Okta, DocuShare, AWS, MAX Messenger
RAlord Affiliate Banned for Breaking CIS Ransomware Rule, Infecting Eriell Group
WeedHack Malware Infects 116,000+ Minecraft Systems via Fake Mods
New Identity Battleground: Attackers Don’t Need to Break MFA, they Just Need a Help Desk

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: