Northwest Radiologists data breach exposes information of 350,000 individuals

Washington-based healthcare services provider Northwest Radiologists said it experienced a data security incident that compromised the sensitive personal information of close to 350,000 individuals.

 

Headquartered in Bellingham, Washington, Northwest Radiologists provides full-service radiology interpretations and minimally invasive interventional procedures at four PeaceHealth hospitals located in Bellingham, Friday Harbor, and Sedro Woolley, Washington, and in Ketchikan, Alaska.

 

In a data security incident notice filed with the Office of Washington Attorney General, Northwest Radiologists said that on January 25, it experienced a network disruption impacting certain systems. 

 

The healthcare services provider immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident. It also took steps to contain the impact of the attack and notified law enforcement about the same.

 

“A thorough investigation determined that certain information stored on our network was subject to unauthorised access from January 20, 2025 to January 25, 2025,” Northwest Radiologists said.

 

The compromised data included names, addresses, telephone numbers, dates of birth, email addresses, Social Security numbers, driver’s license or state identification card numbers, treatment or diagnosis information, provider names, medical record numbers or patient identification number, health insurance information, and treatment cost information.

 

The filing with the Washington state regulator also states that the radiology practice has identified at least 348,118 individuals impacted by the incident.

 

“We have taken the steps necessary to address the event and are committed to fully protecting all the information that you have entrusted to us. We have also implemented additional technical safeguards to further enhance the security of information in our possession and to prevent similar incidents from happening in the future,” the radiology practice said.

 

The healthcare service provider has advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and the state attorney general. 

 

It has also offered complimentary identity protection and credit monitoring services to all affected individuals.