MCBS Data Breach Exposes Sensitive Patient Information in Augusta, GA
A network security incident at MCBS, LLC, a medical billing service provider for healthcare practices, has potentially exposed the personal and medical data of patients linked to Stephen W. Brown & Radiology Associates of Augusta. The breach was first detected on September 25, 2025, when MCBS identified unauthorized access to its systems.
Following an investigation with external cybersecurity experts, MCBS determined on May 28, 2026, that sensitive files may have been accessed or acquired between September 22–26, 2025. The compromised data includes:
- Full names and addresses
- Social Security numbers
- Dates of birth
- Health plan and insurance details
- Medical histories, diagnoses, and treatment records
MCBS stated it has no evidence of misuse or fraud stemming from the incident but is offering 12 months of complimentary identity monitoring through Kroll as a precaution. Affected patients were notified via mail and advised to review medical statements and credit reports for suspicious activity.
The breach highlights ongoing risks in third-party healthcare data handling, with MCBS emphasizing the importance of vigilance despite the lack of confirmed fraud. The incident remains under review.
Source: https://www.wrdw.com/2026/07/02/data-incident-prompts-notices-patients-local-radiology-associate/
MCBS, LLC TPRM report: https://www.rankiteo.com/company/mcbs-llc
Stephen W. Brown & Radiology Associates of Augusta TPRM report: https://www.rankiteo.com/company/brown-radiology-associates
"id": "mcbbro1783038262",
"linkid": "mcbs-llc, brown-radiology-associates",
"type": "Breach",
"date": "7/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'Patients linked to Stephen W. '
'Brown & Radiology Associates of '
'Augusta',
'industry': 'Healthcare',
'location': 'Augusta, GA',
'name': 'MCBS, LLC',
'type': 'Medical Billing Service Provider'}],
'customer_advisories': 'Affected patients notified via mail and advised to '
'review medical statements and credit reports for '
'suspicious activity. Offered 12 months of '
'complimentary identity monitoring through Kroll.',
'data_breach': {'personally_identifiable_information': ['Full names',
'Addresses',
'Social Security '
'numbers',
'Dates of birth',
'Health plan and '
'insurance details'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal data', 'Medical data']},
'date_detected': '2025-09-25',
'date_publicly_disclosed': '2026-05-28',
'description': 'A network security incident at MCBS, LLC, a medical billing '
'service provider for healthcare practices, has potentially '
'exposed the personal and medical data of patients linked to '
'Stephen W. Brown & Radiology Associates of Augusta. The '
'breach was first detected on September 25, 2025, when MCBS '
'identified unauthorized access to its systems. Sensitive '
'files may have been accessed or acquired between September '
'22–26, 2025, including full names, addresses, Social Security '
'numbers, dates of birth, health plan details, and medical '
'histories.',
'impact': {'data_compromised': 'Personal and medical data of patients',
'identity_theft_risk': 'High'},
'investigation_status': 'Under review',
'lessons_learned': 'Highlights ongoing risks in third-party healthcare data '
'handling',
'recommendations': 'Affected patients advised to review medical statements '
'and credit reports for suspicious activity',
'references': [{'source': 'Incident disclosure by MCBS, LLC'}],
'response': {'communication_strategy': 'Affected patients notified via mail',
'third_party_assistance': 'External cybersecurity experts'},
'title': 'MCBS Data Breach Exposes Sensitive Patient Information in Augusta, '
'GA',
'type': 'Data Breach'}