What Happened in the AgelessRx Data Breach?
AgelessRx, a telehealth company that provides longevity and anti-aging treatments, has confirmed a data breach affecting patient health information. The AgelessRx data breach came to light on April 22, 2026, when the company became aware of potential unauthorized access to certain files on its system. As a result, AgelessRx moved quickly to bring in outside help to understand what had happened.
According to the investigation, an unauthorized actor accessed certain help-desk tickets stored within the company’s system between April 17 and April 22, 2026. These support tickets apparently contained sensitive patient details submitted by customers. Because help-desk records often include personal explanations of medical issues, this type of exposure can be especially sensitive.
AgelessRx worked with third-party cybersecurity specialists to determine the nature and scope of the incident. This process took time, since the company needed to review the compromised tickets individually. On May 27, 2026, AgelessRx finished identifying which specific individuals had their information included in the affected data.
Notably, just days after the intrusion, a threat actor using the alias
