Subscribe To Our Newsletter

This field is for validation purposes and should be left unchanged.
Class Action U Logo
Check Your Eligibility

One Medical Senior Health Data Breach

One Medical Senior Health reported a third-party system breach discovered on June 13, 2026, potentially impacting archived patient records from Iora Health. While exact data types have not been fully disclosed, patient files were confirmed as compromised. Threat actors claim large-scale data theft, though this has not been verified. Individuals should monitor accounts, watch for fraud, and consider legal options.

Check Your Eligibility
One Medical Senior Health
Date of Breach: June 13, 2026
CAU logo

Who was affected:

Clients of One Medical Senior Health

Impacted Data:

Patient names and identifiers

Medical records and treatment history

Insurance or billing-related data

Other archived clinical or administrative health information

Check Your Eligibility

One Medical Senior Health, part of Amazon’s One Medical organization following its 2021 acquisition of Iora Health, disclosed a cybersecurity incident involving unauthorized access to a third-party system used to store archived patient data. The incident was discovered on June 13, 2026, and publicly discussed in a June 17, 2026 blog post.

One Medical Senior Health Data Breach Investigation

According to One Medical, unauthorized access was identified in a third-party system that stored archived Iora Health records. The company confirmed that files related to both Iora Health and One Medical Senior Health patients were compromised during the incident.

Importantly, One Medical stated that its core systems and other Amazon or One Medical infrastructure were not affected. The breach was isolated to archived data stored with an external vendor system.

At the time of disclosure, One Medical had not specified the exact categories of patient data exposed. However, given the nature of healthcare records, the incident may involve sensitive personal and medical information requiring careful monitoring by affected individuals.

On June 18, 2026, threat intelligence reporting from Ransomware.live indicated that ransomware group ShinyHunters claimed responsibility for the incident and alleged the theft of approximately 8.8 terabytes of data. These claims have not been independently confirmed by One Medical.

When Did This Breach Occur?

  • Unauthorized access discovered: June 13, 2026
  • Public disclosure: June 17, 2026
  • Additional threat actor claim reported: June 18, 2026
  • Scope of access period: Not publicly confirmed

The timeline suggests that the breach involved third-party systems storing archived healthcare data rather than One Medical’s primary infrastructure.

What Information Was Breached?

One Medical has not officially listed the full set of compromised data elements. However, it confirmed that files related to Iora Health and One Medical Senior Health patients were impacted.

Based on the nature of archived healthcare records, potentially affected information may include:

  • Patient names and identifiers
  • Medical records and treatment history
  • Insurance or billing-related data
  • Other archived clinical or administrative health information

The exact scope of exposure remains under investigation or has not been publicly detailed.

What You Can Do

Individuals who may have been impacted should take precautionary steps:

  1. Monitor healthcare statements and insurance Explanation of Benefits (EOB) documents for unfamiliar activity.
  2. Review financial accounts and credit reports for suspicious transactions or new accounts.
  3. Be alert for phishing attempts referencing medical providers or Amazon-related services.
  4. Consider placing a fraud alert or credit freeze with the major credit bureaus if sensitive identifiers may be involved.
  5. Retain any official notices and monitor updates from One Medical regarding the incident.

These steps help reduce risks associated with medical identity theft and financial fraud.

File a Data Breach Lawsuit Against One Medical Senior Health

Individuals affected by this incident may be eligible to pursue compensation through a data breach lawsuit.

Healthcare organizations and their vendors are expected to maintain strong cybersecurity protections for sensitive patient data. Unauthorized access to archived medical records can lead to identity theft, insurance fraud, and privacy violations.

A data breach lawsuit may allow affected individuals to recover damages for identity protection services, time spent monitoring accounts, and emotional distress. Legal action may also encourage stronger security practices across healthcare and third-party data storage systems.

Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. If you’ve been contacted about this breach, received notice, or believe your information may have been affected, fill out our quick, easy, and secure form to sign up. There is no cost to reach out to our legal partner and no obligation after speaking with someone from our team.

VIEW PDF
Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This field is for validation purposes and should be left unchanged.
Other Data Breaches
Lance Soll & Lunghard Data Breach
Date of Breach: April 27, 2026
Hahn Loeser & Parks Data Breach
Date of Breach: April 28, 2026
Lifepoint Health Data Breach
Date of Breach: April 23, 2026
Show More

Frequently Asked Questions

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.