Telehealth Giant Hims & Hers Says Its Customer Support System Was Hacked

Hims & Hers, nan telehealth institution that sells weight-loss narcotics and intersexual wellness prescriptions, has confirmed a information breach affecting its third-party customer work platform.

The healthcare institution said successful a data breach announcement filed pinch nan California lawyer general’s agency connected Thursday that nan hackers stole information astir personification requests sent to nan company’s customer support team. The institution said hackers collapsed into its third-party ticketing strategy betwixt February 4 and February 7, and stole reams of support tickets, which contained individual accusation submitted by customers.

The information breach announcement said nan hackers took customer names and interaction information, arsenic good arsenic different unspecified individual information that Hims & Hers near redacted successful nan letter.

Although nan institution says customer aesculapian records were not affected by nan breach, nan quality of customer support systems intends that nan information whitethorn incorporate delicate accusation astir a person’s account, individual information, and healthcare.

It’s not yet known really galore individuals had individual accusation compromised successful nan hack. Under California law, companies are required to disclose information breaches involving 500 aliases much authorities residents.

Jake Martin, a spokesperson for Hims & Hers, told TechCrunch successful a connection nan institution was deed by a societal engineering attack, successful which hackers instrumentality labor into granting entree to their systems. The spokesperson said nan stolen information “primarily included customer names and email addresses.” The institution did not opportunity what circumstantial types of information were taken, erstwhile asked by TechCrunch.

The institution would not opportunity if it has received immoderate connection from nan hackers, specified arsenic a request for money.

Customer support and ticketing systems person go rich | targets for financially motivated hackers successful caller months, by raiding databases containing customer information, and extorting companies into paying a ransom.

Last year, Discord had a information breach that affected its customer support ticketing strategy and exposed nan government-issued IDs of astir 70,000 group who had submitted their driver’s licenses and passports to nan institution to verify their age.