Overview
Radiology Associates of Richmond, a medical imaging provider serving patients in Virginia, has disclosed a data breach affecting approximately 266,000 individuals. Threat actors gained unauthorized access to the organization's systems and exfiltrated files containing patient names and protected health information (PHI), according to the breach notification filed with the U.S. Department of Health and Human Services.
The incident follows a sustained wave of cyberattacks targeting healthcare imaging organizations throughout 2026.
Incident Details
What Happened
Radiology Associates of Richmond discovered that an unauthorized party had accessed its systems and stolen files containing sensitive patient data. The organization launched an investigation with the help of cybersecurity professionals and notified federal authorities.
The exact attack vector — whether ransomware, data extortion, or another intrusion method — has not been specified in public disclosures. Radiology practices have been a particularly attractive target for ransomware operators in 2026 due to the high sensitivity of imaging data and the operational pressure to restore systems quickly.
Timeline
- Breach discovery: Internal detection or third-party alert triggered investigation
- Investigation: Forensic review to determine scope and affected records
- HHS notification: Filed with the breach notification portal
- Public disclosure: May 25, 2026
- Patient notification: Written letters being sent to affected individuals
Affected Individuals
| Metric | Detail |
|---|---|
| Total affected | 266,000 individuals |
| Organization | Radiology Associates of Richmond |
| Location | Richmond, Virginia |
| Type | HIPAA-covered entity (healthcare provider) |
Data Categories Exposed
The stolen files contained the following categories of protected health information:
Personal Identifiers
- Full patient names
- Dates of birth
- Addresses and contact information
- Social Security numbers (scope under investigation)
Medical Information
- Radiology orders and imaging study details
- Dates of service
- Referring physician information
- Diagnostic codes and clinical notes
Administrative Data
- Insurance policy information
- Billing records
- Internal patient identifiers
The combination of personally identifiable information with detailed medical imaging records presents significant risks for affected individuals, including insurance fraud, medical identity theft, and targeted social engineering attacks.
Impact on Affected Patients
Immediate Risks
Medical Identity Theft — Stolen radiology records and insurance information can be used to fraudulently bill insurers for medical services or obtain prescription medications.
Targeted Phishing — Attackers in possession of detailed medical histories often craft highly convincing phishing messages that reference real treatment details, increasing click-through rates dramatically.
Insurance Fraud — PHI combined with insurance policy numbers enables fraudulent claims submissions that may affect patients' coverage or out-of-pocket costs.
What to Do If You're Affected
- Watch for your notification letter — Radiology Associates of Richmond is required to notify all 266,000 affected individuals by mail
- Accept the offered credit and identity monitoring — these services typically include dark web monitoring for your information
- Review your Explanation of Benefits (EOB) statements from your health insurer for any unfamiliar charges
- Check your medical records via your patient portal for any unauthorized changes
- Place a credit freeze with Equifax, Experian, and TransUnion to prevent new account fraud
- File an FTC report at identitytheft.gov if you discover your information has been misused
Radiology Sector Under Siege
The healthcare imaging sector has faced intensifying cyberattacks throughout 2025 and 2026. Radiology organizations hold some of the most comprehensive and sensitive patient data in healthcare — imaging studies combined with clinical history paint a detailed picture of a patient's health — making them highly attractive targets.
Contributing factors to the sector's vulnerability include:
- Legacy imaging systems (PACS/RIS) that are difficult to patch and often run outdated software
- Integration with hospital networks creating broad access paths for attackers
- Operational pressure — downtime directly affects patient care, making ransom payment more likely
- Third-party connectivity with referring physicians, labs, and insurance networks
2026 Healthcare Breach Context
| Organization | Affected | Category |
|---|---|---|
| Qualderm Partners | 3.1 million | Dermatology |
| Oncology Institute | TBD | Oncology |
| OpenLoop Health | 716,000 | Mental health |
| Sandhills Medical | 170,000 | General healthcare |
| Radiology Associates of Richmond | 266,000 | Medical imaging |
HIPAA Compliance and Regulatory Response
As a HIPAA-covered entity, Radiology Associates of Richmond is subject to specific breach notification requirements under the HIPAA Breach Notification Rule:
- Individual notification within 60 days of breach discovery (written mail)
- HHS notification via the HHS breach portal (completed as of disclosure date)
- Media notification if more than 500 residents of any single state are affected
- Business Associate Agreement review to assess vendor liability
The HHS Office for Civil Rights (OCR) may open an investigation following the breach report, particularly given the scale of 266,000 affected individuals.
Recommendations for Healthcare Imaging Organizations
- Segment PACS and RIS systems from general corporate networks
- Apply patches aggressively to imaging infrastructure, even when vendor certification is required
- Implement network monitoring specifically tuned for large data transfers from imaging servers
- Require multi-factor authentication on all remote access to imaging systems
- Conduct regular penetration testing focused on medical device and imaging infrastructure
- Maintain offline backups of imaging data to enable recovery without paying ransom
Sources
- SecurityWeek — 266,000 Affected by Data Breach at Radiology Associates of Richmond