Ultrahuman Warns Customers After March 27 Breach Exposed Order Histories and Contact Data
Updated
Updated · Wifi Hifi Magazine · Jun 4
Ultrahuman Warns Customers After March 27 Breach Exposed Order Histories and Contact Data
3 articles · Updated · Wifi Hifi Magazine · Jun 4
Summary
March 27 access to Ultrahuman’s internal analytics system let an unauthorized third party read customer contact, account, order and transaction-history data, the company told users.
Read-only access meant the intruder could not alter or delete records, and Ultrahuman said no passwords, card details, payment data or wellness information were affected.
Ultrahuman said it quickly took the system offline, revoked access, tightened internal permissions, hardened employee devices and added export-volume anomaly alerts.
Customer-facing risk now centers on phishing: the company urged users to treat emails, texts and calls claiming to be from Ultrahuman with caution and not share passwords or payment details.
The notice follows customer disclosure about 68 days after the incident, with Ultrahuman saying it is still monitoring for any public posting or misuse of the accessed data.