Hackers gained access to Ultrahuman health sensor user data

Wearable health device maker Ultrahuman disclosed a data breach in which hackers accessed clients' health data. The attack originated from login credentials stolen from an employee's laptop infected with malware. The company used an internal tool for access.

Wearable device manufacturer Ultrahuman disclosed a security breach in which unauthorised individuals gained access to clients' health and wellness data. The breach occurred through the company's internal tool, which was used to manage user data.

Access was obtained through login credentials stolen from an employee's laptop. The computer had previously been infected with malware, which allowed attackers to obtain the necessary credentials and breach the company's systems.

Ultrahuman is known for its Ring wearable, which tracks users' sleep patterns, heart rate, body temperature and other health data. The leak of such data is particularly sensitive, as it involves personal biological indicators.

The company has notified affected clients of the data breach and implemented measures to strengthen security. The exact scope of the breach and the number of affected users have not been publicly disclosed. The incident underscores how critical it is to protect employee devices against malware, especially when they are connected to the company's sensitive systems.