{"schema_version":"secwatch.filing_event.v1","accession":"0001388658-26-000055","form_type":"8-K","ticker":"IRTC","cik":"0001388658","company_name":"iRhythm Holdings, Inc.","filed_at":"2026-06-15T20:30:17+00:00","discovered_at":"2026-06-15T20:31:00.298462+00:00","generated_at":"2026-06-15T20:31:20.160711+00:00","sec_items":["1.05"],"event_type":"cyber","sentiment":"negative","materiality_score":0.75,"calibrated_materiality_score":0.75,"confidence":"high","headline":"iRhythm discloses cyber incident with data exfiltration; threat actor demanded payment","bullets":["Unauthorized activity identified June 8; threat actor demanded payment for not disclosing exfiltrated data including PHI and proprietary info.","Company determined incident material on June 10 due to volume of potentially affected data.","No impact to clinical/medical devices, financial reporting, or patient safety; no card info stored.","Investigation ongoing; no evidence of ongoing access; company believes not likely material to financial condition.","Company has cyber insurance but no assurance coverage sufficient."],"urls":{"canonical":"https://secwatch.observer/filing/0001388658-26-000055","json":"https://secwatch.observer/filing/0001388658-26-000055.json","markdown":"https://secwatch.observer/filing/0001388658-26-000055.md","text":"https://secwatch.observer/filing/0001388658-26-000055.txt","edgar_index":"https://www.sec.gov/Archives/edgar/data/1388658/000138865826000055/0001388658-26-000055-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/1388658/000138865826000055/irtc-20260610.htm"},"model":{"generated_by":"deepseek-v4-flash:cloud@v2","generated_at":"2026-06-15T20:31:20.160711+00:00"},"review":{"review_status":"machine_generated","human_reviewed":false,"corrected":false,"correction_note":null,"correction_timestamp":null,"superseded_by":null,"related_filings":[]},"source_grounded_claims":[{"claim_id":"15fbc6810f5891dc3210ee88ed8dcc63ee35c21e","claim":"iRhythm Holdings, Inc. disclosed a cybersecurity incident: Unauthorized activity involving data maintained on certain third-party-hosted business applications, obtained through social engineering, resulting in exfiltration of proprietary data, patient protected health information and other personal information. Impact: The Company has not identified any impact to its products, clinical or medical device systems, patient safety, manufacturing and distribution operations, financial reporting systems, or the ability to meet patient needs. The Company believes the incident is not reasonably likely to have a material i. Company determined it material. Discovered 2026-06-08.","evidence_excerpt":"On June 10, 2026, the Company determined that the incident is material in light of the volume of the potentially affected data.","evidence_source":"SEC 8-K Item 1.05","evidence_url":"https://www.sec.gov/Archives/edgar/data/1388658/000138865826000055/0001388658-26-000055-index.htm","confidence":0.9,"family_label":"Cybersecurity Incidents","details":[{"label":"Nature","value":"Unauthorized activity involving data maintained on certain third-party-hosted business applications, obtained through social engineering, resulting in exfiltration of proprietary data, patient protected health information and other personal information."},{"label":"Impact","value":"The Company has not identified any impact to its products, clinical or medical device systems, patient safety, manufacturing and distribution operations, financial reporting systems, or the ability to meet patient needs. The Company believes the incident is not reasonably likely to have a material i"},{"label":"Materiality","value":"determined material"},{"label":"Discovery","value":"2026-06-08"}],"fact_type":"cyber_incident"}],"license":"Source filings: public domain (SEC EDGAR). Summaries (headline + bullets): CC-BY-4.0; attribute https://secwatch.observer"}