Home
>
Data Breach>Expert MRI

Expert MRI Data Breach Exposes PII & PHI Affecting 200k

Published
December 15, 2025
Updated
January 30, 2026
Expert MRI Data Breach Exposes PII & PHI Affecting 200k
Expert MRI

Affected by the

Expert MRI

data breach?

Join the Lawsuit

Expert MRI, a leading California-based diagnostic imaging provider, experienced a data breach after its computer network was accessed by unauthorized actors between June 2, 2025, and Aug. 24, 2025. The cybersecurity event compromised information includes both personally identifiable information (PII) and protected health information (PHI), affecting 209,560 individuals.

The incident was first posted on the dark web on Sept. 6, 2025, by a threat actor known as PEAR taking credit for the intrusion on the Tor network. The actor claimed responsibility for the attack, which involved deploying ransomware and stealing approximately 617 GB of data.

The breach was confirmed after an investigation revealed that files containing sensitive data were copied from the network during this period.

Exposed data consists of names, addresses, dates of birth, admission dates, diagnosis information, treatment information and, for a smaller subset of individuals, Social Security numbers. This combination of PII and PHI significantly increases the risk of identity theft and fraud for those affected, as attackers may use this data for malicious purposes.

The breach was disclosed to the public by the U.S. Department of Health and Human Services and to Expert MRI's website.

Expert MRI's response

In response to the breach, Expert MRI worked closely with third-party cybersecurity professionals to investigate the incident and assess the scope of the data involved. The company has reviewed the affected data to identify individuals whose information was compromised.

If you believe your personal information may have been compromised in this breach:

  • Carefully review any notice or communication you receive from Expert MRI or a company that does business with Expert MRI.
  • Monitor financial accounts and credit reports for signs of identity theft.
  • Consider placing fraud alerts or credit freezes with the major credit bureaus.
  • Be cautious of unsolicited emails or phone calls requesting personal information.

For affected individuals with questions, Expert MRI has set up a call center at 855-720-3740, Monday through Friday, 9 a.m. to 5 p.m. ET.

Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info
  • Affected information types not yet disclosed

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Sources

Disclosures

Breach Summary

Affected Entity
Expert MRI
Consumers Notification date
Date of Breach
August 24, 2025
Breach Discovered Date
Total People Affected
209560
Information Types Exposed
  • name
  • address
  • date of birth
  • admission date
  • diagnosis information
  • treatment information
  • Social Security numbers

Data Breach Settlements

American National Bank & Trust Data Breach Settlement
Highline School District $650,000 Data Breach Settlement
Carespring Health Care Management Data Breach Settlement
Gryphon Healthcare $2.8M Data Breach Class Action Settlement
Varsity Brands $1.1M Data Breach Class Action Settlement
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image

What to Read Next

Portland Public Schools Data Breach Affects 12,128
February 2, 2026
Portland Public Schools Data Breach Affects 12,128
Fried Frank Data Breach Affects 46,602 in the U.S.
February 2, 2026
Fried Frank Data Breach Affects 46,602 in the U.S.
Bison State Bank Data Breach Exposes SSNs & Financial Account Information
February 2, 2026
Bison State Bank Data Breach Exposes SSNs & Financial Account Information
BAYADA Home Health Care Data Breach: PHI and PII of Clients Exposed
February 2, 2026
BAYADA Home Health Care Data Breach: PHI and PII of Clients Exposed