// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Hims & Hers Health
Breach Record

Hims & Hers Health

DISCLOSED 2026-04-05 · STOLEN CREDS

Telehealth company Hims & Hers Health disclosed a data breach after threat actors compromised its Zendesk customer support platform. The attackers stole support tickets containing customer personal information. The company filed a disclosure this week.

The record

What we know

Disclosed
2026-04-05
Attack vector
Stolen Creds
Sector
Telehealth
Data classes exposed
customer personal information
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

Insufficient details to determine if a positive-security model would have prevented the breach, as the method of Zendesk compromise is not specified.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the Hims & Hers Health disclosure. It updates if new public reporting emerges. All tracked breaches →

Hims & Hers Health just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →