Radiology Associates of Richmond Data Breach Affects 1.6 Million People

Radiology Associates of Richmond, Inc. (RAR) experienced a data breach that exposed both personally identifiable information (PII) and protected health information (PHI). An unauthorized actor infiltrated the RAR network and on May 2, 2025 an investigation revealed the cybersecurity incident occurred April 2, 2024 through April 6, 2024.

Exposed information may have included Social Security numbers, dates of birth, address information, financial account or payment card numbers, medical records and health insurance information. The data breach impacted an estimated 1,419,091 individuals.

The data breach was disclosed to the U.S. Department of Health and Human Services on July 1, 2025. Affected patients include 1,279 Massachusetts residents and 80 in Montana.

Radiology Associates of Richmond began notifying affected individuals on July 1, 2025 and published a Notice of Data Security Incident on its own website. The data breach was also disclosed to the California, Massachusetts and Montana Attorney Generals' offices on July 1, 2025.

Radiology Associates of Richmond's response

In additional to required state disclosures, Radiology Associates of Richmond is offering free Cyberscout single bureau credit monitoring services to all affected individuals.

If you receive notification from Radiology Associates of Richmond about this breach, you may want to:

• Carefully review any notice or communication you receive and sign up for the free credit monitoring services offered by RAR.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about the company and its services, visit the Radiology Associates of Richmond, Inc. website.