CRIME & LAW

United States clinic network probes major patient data breach

▪

Read, Watch or Listen

Media Bias Meter

Sources: 2

Center 100%

Sources: 2

One Medical, a U.S. healthcare network owned by Amazon, has confirmed that unknown attackers accessed a third‑party file storage system holding archived patient data between June 8 and 11, 2026. The breach involves legacy records from One Medical Seniors and Iora Health, affecting demographic and clinical information for patients in several regions including Atlanta, Cape Cod, Charlotte, Denver, Houston, Phoenix, Seattle, Tucson, and North Carolina’s Piedmont Triad. Ransomware group ShinyHunters claims to have stolen 8.8 terabytes of data and is threatening publication if talks do not begin by June 22. One Medical says core clinical systems remain unaffected and plans to notify impacted patients after its investigation concludes.

Prepared by Emily Rhodes and reviewed by editorial team.

Timeline of Events

2023 Amazon acquires One Medical for $3.5 billion
June 8 2026 Attackers access third‑party storage system
June 8–11 2026 Archived patient data allegedly exfiltrated
June 13 2026 One Medical discovers security incident
Mid‑June 2026 Company blocks access, starts investigation
Mid‑June 2026 ShinyHunters claims 8.8TB data theft
By June 22 2026 Group threatens to publish stolen data
After investigation One Medical plans patient notifications

Why This Matters to You

Your privacy could be at risk if you're a One Medical patient in the affected regions. The breach involves personal and clinical data. Check your emails and mail for a notification from One Medical. Stay vigilant for potential scams using your information.

The Bottom Line

A major data breach at a U.S. healthcare network is a serious concern. One Medical is investigating and promises to notify affected patients. It's a reminder to always monitor your personal information. Worth forwarding if you know a One Medical patient.