Keypoints
- Hims & Hers detected unauthorized access to a third‑party customer service platform during February 4–7, 2026.
- Stolen support tickets may have contained names, contact details, and other support-request data, with no medical records exposed.
- Investigators and reporting link the incident to the ShinyHunters group using compromised Okta SSO accounts to access Zendesk.
- The company notified authorities, informed affected individuals, and is providing 12 months of free credit monitoring.
- Customers are urged to watch for phishing attempts, review account statements, and monitor credit reports for suspicious activity.