iRhythm Holdings Data Breach Investigation
iRhythm Holdings, Inc. has been publicly linked to a reported data incident involving health information. At this stage, detailed information from the official notice is not publicly accessible, so the available facts appear limited to a regulatory filing. Below, we explain what has been reported, what information may have been involved, and practical steps affected individuals can take now. If you think you may have been affected, you can also fill out the form on this page to see whether you may qualify for a claim.
iRhythm Holdings, Inc. is a California healthcare company. Publicly available materials indicate the company has been linked to a reported cybersecurity incident, but detailed notice materials were not publicly accessible at the time of writing.
Key Facts at a Glance
- Company: iRhythm Holdings, Inc.
- Industry: Healthcare
- Location: California
- Incident type: Reported hacking/IT incident
- Public listing date: June 10, 2026
- Information reportedly involved: Health information
- Affected population: Not publicly stated in the materials reviewed
- Notice date: Not publicly available in the materials reviewed
What Happened?
According to a public filing, iRhythm Holdings, Inc. reported a hacking/IT incident that was publicly listed on June 10, 2026. Detailed information from the official notice is not publicly accessible at this time. The following summary is based on regulatory filing information rather than a full consumer notice, so some details remain unknown.
At this stage, publicly available information does not clearly identify when the issue was discovered, how the incident unfolded, or how many people may have been affected. If additional notice materials are published later, those details may become clearer.
What Information Was Exposed?
The available filing indicates that health information may have been involved. The public materials reviewed do not specify which types of health information were at issue, so it is not possible to confirm whether the data included medical records, treatment details, insurance information, or other protected health information.
Because the current description is limited, affected individuals should avoid assuming either that only minimal information was involved or that broader personal data was necessarily exposed. If you receive a direct notice from the company, review it closely for the exact categories listed.
What Should You Do Next?
- Watch for a mailed or emailed notice. A direct notice may explain what data categories were involved, whether the company is offering assistance, and what dates matter.
- Review your medical and insurance activity. Check explanation-of-benefits statements, provider bills, and account portals for services or charges you do not recognize.
- Document anything unusual. Save letters, screenshots, claim denials, collection notices, and notes from calls with insurers or providers.
- Monitor your broader identity records if new details emerge. Even though the public filing currently identifies health information, it can still be wise to review your credit reports and consider added protections if later updates show other personal data was involved.
- Report suspected identity misuse quickly. If you see signs of medical or identity fraud, notify the relevant provider, insurer, or financial institution and make a report through official consumer-protection channels.
- Ask about your legal options. If you believe you may have been affected, you can fill out the form on this page to contact Strauss Borrelli PLLC and learn whether you may qualify for a claim.
Your Legal Rights
If your information was involved in a reported data incident, your rights may depend on where you live, what categories of data were affected, and what the company knew and when. In general, consumers may have rights relating to notice, information about the incident, and potential legal claims if reasonable data-security practices were not followed.
A lawyer can help evaluate whether the known facts support a claim, what losses or risks may matter, and what deadlines could apply. This page provides general information only and is not individualized legal advice.
Why Hire Strauss Borrelli PLLC?
Strauss Borrelli PLLC represents individuals in data breach and privacy matters and has experience investigating whether companies used reasonable safeguards and provided legally adequate notice. Our team can review the available facts, explain next steps in plain English, and help you understand whether a lawsuit or claim may be appropriate. If you have questions about the reported iRhythm Holdings incident, contact Strauss Borrelli PLLC or use the form provided on this page.
If you received a breach notification letter from iRhythm Holdings:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
