266,000 Affected by Data Breach at Radiology Associates of Richmond

Radiology Associates of Richmond (RAR) has disclosed a data breach impacting the protected health information of 266,000 individuals.

According to the healthcare organization’s incident notice, the data breach occurred on or about July 25, 2025, when hackers accessed its internal systems.

RAR did not say when the intrusion was discovered, but said that it worked with external cybersecurity experts to contain the attack and investigate its scope.

“After an extensive forensic investigation and manual document review, RAR’s investigation concluded on or about April 6, 2026, that files containing protected health information pertaining to a limited number of individuals were acquired in an unauthorized manner as a result of the incident,” the organization says.

On May 21, RAR started sending notification letters to the potentially impacted individuals. According to the organization’s filing with the Maine Attorney General’s Office, 266,183 people are receiving such letters.