Home
>
Data Breach>Central Kentucky Radiology

"Central Kentucky Radiology Confirms Data Breach Impact"

Published
June 13, 2025
Updated
June 25, 2025
"Central Kentucky Radiology Confirms Data Breach Impact"
Central Kentucky Radiology
Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info

Affected by the

Central Kentucky Radiology

data breach?

Join the Lawsuit

It's free to join. 

Central Kentucky Radiology (CKR), a physician-owned radiology group based in Lexington, Kentucky, has experienced a data breach affecting 166,953 individuals. The cybersecurity incident was disclosed to the U.S. Department of Health and Human Services on June 13, 2025.

Central Kentucky Radiology discovered a network disruption on October 18, 2024. An investigation determined that between October 16 and October 18, 2024, an unauthorized actor accessed and copied files from certain CKR systems. The compromised files contained information related to patient billing.

Compromised information included personally identifiable information (PII) and protected health information (PHI). Breached information may have included name, address, date of birth, Social Security number, date of medical service, and service charge.

On May 7, 2025, CKR completed a review and began notifying impacted patients by mail on June 12, 2025. The data breach was disclosed to the Maine, Vermont and New Hampshire Attorney Generals' offices on June 13, 2025, with a reported 20 Massachusetts residents, 8 New Hampshire residents and three Mainers affected.

The cybersecurity incident was also reported to the Massachusetts Attorney General's office on June 17, 2025. Central Kentucky Radiology published a Notice of Data Security Event on its own website.

Central Kentucky Radiology's response

CKR secured its systems to prevent further access and launched an investigation. Affected individuals and regulatory authorities are being notified, as required by law.

If you receive a data breach notification from Central Kentucky Radiology, you may want to:

  • Sign up for the free TransUnion Cyberscout credit monitoring offered by CKR.
  • Monitor your credit reports and financial accounts for any unusual activity.
  • Be alert for phishing emails or phone calls that may use your exposed information.
  • Consider placing a fraud alert or credit freeze with major credit bureaus.

Central Kentucky Radiology has also set up a dedicated assistance line at 1-833-566-6360, available Monday through Friday from 8:00 am to 8:00 pm.

For more information about the company, visit Central Kentucky Radiology’s website.

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Sources

Disclosures

Breach Summary

Affected Entity
Central Kentucky Radiology
Consumers Notification date
June 12, 2025
Date of Breach
Breach Discovered Date
May 07, 2025
Total People Affected
Information Types Exposed
  • Medical Records
  • Social Security number
  • address
  • date of birth
  • date of medical service
  • name
  • service charge
  • social security numbers

Data Breach Settlements

NorthCare Data Breach Class Action Settlement
RBA Inc. Data Breach Class Action Settlement
Apria Healthcare $6.38M Data Breach Class Action Settlement
HealthEC $5.48M Data Breach Class Action Settlement
Pallet Logistics of America $635K Data Breach Settlement
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image

What to Read Next

Wood River Health Data Breach Affects 54,926 Individuals: SSNs Exposed
July 29, 2025
Wood River Health Data Breach Affects 54,926 Individuals: SSNs Exposed
RiteCheck Data Breach Exposes Social Security Numbers: 68,587 Affected
July 29, 2025
RiteCheck Data Breach Exposes Social Security Numbers: 68,587 Affected
Brien Center Data Breach Exposes Protected Health Information
July 29, 2025
Brien Center Data Breach Exposes Protected Health Information
Avala Data Breach Exposes Sensitive Patients' Social Security Numbers
July 29, 2025
Avala Data Breach Exposes Sensitive Patients' Social Security Numbers