One Medical hit by ransomware, 8.8 TB of data claimed

The ransomware group ShinyHunters says it took 8.8 terabytes from a service that holds some of the most sensitive data there is.

Future Technology · 27 June 2026

One Medical, the primary-care service Amazon bought in 2023, is the latest target of the ransomware group ShinyHunters. The group claims to have stolen 8.8 terabytes of data. The full contents of that haul are still being investigated, but One Medical handles detailed health records for millions of patients across the US.

ShinyHunters has been one of the busiest ransomware operators of 2026, behind a run of high-profile attacks. This is their most significant health-sector claim of the year. One Medical has not yet publicly confirmed the scope of the breach.

Health data is the worst category to lose. A leaked card number gets cancelled and reissued by the weekend. A leaked diagnosis, prescription history or mental-health record stays sensitive for the rest of your life, and there is no reset button. That is what makes a claim of this size alarming even before the details are confirmed.

It hasn't been an isolated week. The Klue supply-chain attack on 11-12 June exposed data from several security firms, including HackerOne and Snyk, through a compromised Salesforce integration. A Texas Parks and Wildlife breach may have hit more than three million residents via a compromised licensing vendor. The pattern is familiar: attackers go through the soft third-party integration rather than the front door.

If you are a One Medical patient, the sensible steps are the usual ones. Watch for phishing that references real medical details, since stolen health data makes for very convincing lures. Turn on multi-factor authentication anywhere you reuse a password. And keep an eye on official communications from One Medical for confirmation of exactly what was taken.

The Amazon angle adds scrutiny. Owning a healthcare provider means holding a lot of sensitive data, and a breach of this scale invites hard questions about how that data was segmented and secured. The answers will matter well beyond One Medical's own patients.

Why it matters: You can change a leaked password. You cannot change your medical history. If the 8.8 TB claim holds, this is one of the largest health-data breaches of the year, and Amazon's ownership puts the spotlight on what it stores and how.
Get the one tech email worth reading each morning.
Join the free Daily Briefing