233/69 Wednesday, April 29, 2026
Medtronic, a global medical device manufacturer, has confirmed a cybersecurity incident affecting its internal IT systems after the cybercrime group ShinyHunters claimed it had accessed and stolen more than 9 million records. The company stated that it detected unauthorized access to certain parts of its IT environment but has not yet disclosed technical details of the incident.
Medtronic clarified that the incident has not impacted its products, patient safety, manufacturing operations, service delivery, or financial systems. The company emphasized that its network architecture is segmented, separating internal IT systems, product environments, and manufacturing systems, as well as maintaining isolation from customer hospital networks. Medtronic has since contained the incident and activated its incident response process in coordination with external cybersecurity experts.
Meanwhile, ShinyHunters published claims on a Tor-based leak site, alleging possession of a large volume of personal and internal corporate data, and threatened to release it if a ransom was not paid within a specified timeframe. However, the listing was later removed. The company is currently assessing whether any personal data was affected and stated that it will notify and support impacted individuals if a data breach is confirmed.