Hims Breach Exposes the Most Sensitive Kinds of PHI

Dark Reading cybersecurity · April 10, 2026 · Original source

Threat actors breached the telehealth brand, and now they may know who's bald, overweight, and impotent. What could they do with that information?

Related Vulnerabilities

CVE-2026-3689: OpenClaw Canvas Path Traversal Information Disclosure Vulnerability. This vulnerability allows remot MEDIUM
CVE-2026-35668: OpenClaw before 2026.3.24 contains a path traversal vulnerability in sandbox enforcement allowing sa HIGH
CVE-2026-34486: Missing Encryption of Sensitive Data vulnerability in Apache Tomcat due to the fix for CVE-2026-2914 MEDIUM
CVE-2021-47960: A files or directories accessible to external parties vulnerability in Synology SSL VPN Client befor MEDIUM
CVE-2026-4155: ChargePoint Home Flex Inclusion of Sensitive Information in Source Code Information Disclosure Vulne HIGH