Radiology Associates of San Luis Obispo, a healthcare provider, suffered a data breach after an unauthorized actor accessed employee email accounts between February 3, 2025, and March 17, 2025. The breach exposed personally identifiable information (PII) and protected health information (PHI) of at least 13,158 individuals, including names, addresses, dates of birth, Social Security numbers, driver’s license copies, medical records, imaging records, and payment details (card numbers and CVV codes). The incident was reported to the U.S. Department of Health and Human Services (HHS) and the California Attorney General as a hacking/IT incident. The organization responded by resetting passwords, updating security policies, and offering 12 months of free credit monitoring (TransUnion Cyberscout) to affected individuals. A dedicated helpline was also established for support. The breach posed risks of identity theft, financial fraud, and phishing attacks due to the sensitivity of the exposed data, particularly in the healthcare sector where PHI is highly regulated under HIPAA.
Source: https://www.claimdepot.com/data-breach/pacific-imaging-2025
TPRM report: https://www.rankiteo.com/company/rasloimaging
"id": "ras2502925091325",
"linkid": "rasloimaging",
"type": "Breach",
"date": "2/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '13,158 individuals',
'industry': 'Healthcare',
'location': 'San Luis Obispo, California, USA',
'name': 'Pacific Imaging Management, LLC dba Radiology '
'Associates of San Luis Obispo',
'type': 'Healthcare Provider'}],
'attack_vector': 'Compromised Employee Email Accounts',
'customer_advisories': 'Mail notifications sent to affected individuals '
'(2025-09-10) with guidance on credit monitoring and '
'fraud prevention.',
'data_breach': {'data_exfiltration': True,
'file_types_exposed': ['Emails',
'Attachments (Potentially '
'Medical/Imaging Records)'],
'number_of_records_exposed': '13,158',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High (Includes SSNs, Medical Records, '
'Payment Info)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)',
'Financial Data (Payment '
'Information)']},
'date_detected': '2025-03-13',
'date_publicly_disclosed': '2025-09-10',
'description': 'Pacific Imaging Management, LLC dba Radiology Associates of '
'San Luis Obispo, experienced a data breach affecting at least '
'13,158 individuals. An unauthorized actor gained access to '
'internal email accounts between February 3, 2025, and March '
'17, 2025, compromising personally identifiable information '
'(PII) and protected health information (PHI), including '
'names, addresses, dates of birth, Social Security numbers, '
"driver's license copies, medical records, imaging records, "
'and payment information (card numbers and CVV codes).',
'impact': {'brand_reputation_impact': 'Potential Reputation Damage (Breach '
'Notification and Credit Monitoring '
'Offered)',
'data_compromised': ['Personally Identifiable Information (PII)',
'Protected Health Information (PHI)',
'Names',
'Addresses',
'Dates of Birth',
'Social Security Numbers',
"Driver's License Copies",
'Medical Records',
'Imaging Records',
'Payment Information (Card Numbers, CVV '
'Codes)'],
'identity_theft_risk': 'High (PII and PHI Exposed)',
'payment_information_risk': 'High (Card Numbers and CVV Codes '
'Exposed)',
'systems_affected': ['Employee Email Accounts']},
'initial_access_broker': {'entry_point': 'Employee Email Accounts',
'high_value_targets': ['PII',
'PHI',
'Payment Information']},
'investigation_status': 'Completed (Breach Confirmed and Notifications Sent)',
'post_incident_analysis': {'corrective_actions': ['Password Resets for '
'Affected Accounts',
'Updated Internal Policies '
'and Procedures',
'Offered 12 Months of Free '
'Credit Monitoring '
'(TransUnion Cyberscout)'],
'root_causes': ['Compromised Employee Email '
'Credentials (Potential Phishing '
'or Weak Passwords)']},
'ransomware': {'data_exfiltration': True},
'recommendations': ['Sign up for free credit monitoring and identity '
'protection services (12 months of TransUnion '
'Cyberscout).',
'Monitor credit reports and financial accounts for '
'unusual activity.',
'Be alert for phishing emails/phone calls exploiting '
'exposed information.',
'Consider placing a fraud alert or credit freeze with '
'major credit bureaus.'],
'references': [{'source': 'Radiology Associates of San Luis Obispo Breach '
'Notice'},
{'source': 'U.S. Department of Health and Human Services (HHS) '
'Breach Portal'},
{'source': "California Attorney General's Office"}],
'regulatory_compliance': {'regulations_violated': ['HIPAA (Potential '
'Violation)'],
'regulatory_notifications': ['U.S. Department of '
'Health and Human '
'Services (2025-08-25)',
'California Attorney '
'General '
'(2025-09-10)']},
'response': {'communication_strategy': ['Mail Notifications to Affected '
'Individuals (Sent 2025-09-10)',
'Dedicated Assistance Line '
'(1-833-456-5383, Mon-Fri '
'5:00am–5:00pm PT)',
'Reporting to U.S. Department of '
'Health and Human Services '
'(2025-08-25)',
'Reporting to California Attorney '
'General (2025-09-10)'],
'containment_measures': ['Password Resets for Compromised '
'Accounts'],
'incident_response_plan_activated': True,
'remediation_measures': ['Updated Internal Policies and '
'Procedures']},
'stakeholder_advisories': 'Dedicated assistance line (1-833-456-5383) for '
'questions and support.',
'threat_actor': 'Unauthorized Actor (Unknown)',
'title': 'Data Breach at Radiology Associates of San Luis Obispo (Pacific '
'Imaging Management, LLC)',
'type': ['Data Breach', 'Hacking/IT Incident']}