What type of healthcare provider is Central Kentucky Radiology?

Central Kentucky Radiology (CKR) is a Lexington-based radiology services provider that offers medical imaging and diagnostic services to patients in the central Kentucky region.

How many patient records were exposed in the CKR ransomware attack?

The ransomware attack exposed 166,953 patient records. However, the number of affected individuals has not been disclosed, as it's unclear whether each record pertains to a different patient or if one patient can have multiple records in the system.

What patient information was compromised in the CKR breach?

The attack resulted in the compromise of patient billing information including names, addresses, dates of birth, Social Security numbers, medical service dates, and service charges. This represents comprehensive personal and medical billing data.

When were patients notified about the Central Kentucky Radiology breach?

Although the breach occurred in October 2024, CKR did not begin notifying impacted individuals until on or around June 13, 2025. This represents an approximately 8-month delay between the incident and patient notification.

Why was there such a long delay in notifying patients about the CKR breach?

CKR has not provided a clear explanation for the 8-month delay between the October 2024 breach and the June 2025 patient notifications. This significant delay has prompted legal investigations and questions about the healthcare provider's incident response procedures.

What support is CKR offering to affected patients?

Central Kentucky Radiology has offered affected individuals 12 months of complimentary credit monitoring services to help protect against potential identity theft and fraud resulting from the exposure of their personal information.

What should patients do if they were affected by the CKR ransomware attack?

Affected patients should take advantage of the free 12-month credit monitoring services offered by CKR, monitor their financial accounts and credit reports for suspicious activity, be vigilant for identity theft attempts, review medical and insurance statements for unauthorized services, and consider contacting the law firms investigating potential class action lawsuits.

Was the CKR ransomware attack successfully contained?

Yes, the breach was contained after CKR detected the network disruption. However, the attackers had already gained access to data systems and stolen patient information during the October 16-18, 2024 timeframe before the breach was discovered and contained.

What type of medical information was exposed in the CKR breach?

The breach primarily involved patient billing information rather than detailed medical records. The exposed data included medical service dates and service charges, which could reveal information about the types of radiology services patients received and when they received them.

Could the CKR breach lead to medical identity theft?

Yes, the exposure of Social Security numbers, names, dates of birth, and medical service information could potentially be used for medical identity theft. Patients should monitor their medical insurance statements and healthcare records for unauthorized services or claims.

What makes the CKR notification delay particularly concerning?

The 8-month delay between the October 2024 breach and June 2025 notification is particularly concerning because it prevented patients from taking timely protective measures. This extended delay has raised questions about CKR's compliance with healthcare data breach notification requirements and has prompted legal investigations.

Are Social Security numbers at risk from the CKR data breach?

Yes, Social Security numbers were among the compromised data in the CKR ransomware attack. This puts affected patients at significant risk for identity theft and fraud, making it crucial for them to monitor their credit reports and consider placing fraud alerts or credit freezes.

What should patients watch for after the Central Kentucky Radiology breach?

Patients should watch for unauthorized financial transactions, new accounts opened in their name, medical services they didn't receive, insurance claims they didn't authorize, phishing attempts using their compromised information, and any suspicious activity related to their healthcare or financial records.

How can patients verify if they were affected by the CKR ransomware attack?

Patients who received radiology services from Central Kentucky Radiology should watch for direct notification from CKR. Given the delayed notification timeline, patients who used CKR services and haven't received notification should contact the provider directly to inquire about their status.

What areas does Central Kentucky Radiology serve?

Central Kentucky Radiology is based in Lexington and provides radiology services to patients in the central Kentucky region. Patients who received imaging or diagnostic services in this area may have been affected by the data breach.

Could patients be entitled to compensation from the CKR breach?

Multiple law firms are investigating potential class action lawsuits against CKR for the delayed disclosure of the data breach. Affected patients may be entitled to compensation, particularly given the significant delay in notification that prevented timely protective action.

What does this CKR incident reveal about healthcare cybersecurity?

The CKR incident highlights ongoing vulnerabilities in healthcare cybersecurity, the critical importance of timely breach notification, and the potential legal consequences of delayed disclosure. It demonstrates that even specialized medical service providers like radiology practices are targets for ransomware attacks and must maintain robust security measures and incident response procedures.

Incident

Central Kentucky Radiology hit by ransomware attack, exposing nearly 167 K patient records

Q: When did the Central Kentucky Radiology ransomware attack occur?

The ransomware attack occurred between October 16 and October 18, 2024. The breach was contained after CKR detected the network disruption, but significant patient data had already been compromised during this timeframe.

Q: Are there legal actions being taken against Central Kentucky Radiology?

Yes, the delay in notification has prompted legal investigations. Multiple law firms are investigating potential class action lawsuits against the healthcare provider for the delayed disclosure of the data breach.

published: July 8, 2025

Learn More

Central Kentucky Radiology (CKR), a Lexington-based radiology services provider is reporting a ransomware attack that exposed 166,953 patient records.

The attackers aaccess to CKR's data systems between October 16 and October 18, 2024, and stole data from certain systems. The breach was contained after CKR detected the network disruption.

The attack resulted in the compromise of patient billing information. Exposed data includes:

Names
Addresses
Dates of birth
Social Security numbers
Medical service dates
Service charges

The number of affected individuals is not disclosed. It's not clear whether each record pertains to a different patient or one patient can have multiple records. CKR has offered affected individuals 12 months of complimentary credit monitoring services.

Although the breach occurred in October 2024, CKR did not begin notifying impacted individuals until on or around June 13, 2025. The delay in notification has prompted legal investigations. Multiple law firms are investigating potential class action lawsuits against the healthcare provider for the delayed disclosure.

Central Kentucky Radiology hit by ransomware attack, exposing nearly 167 K patient records

Read More
Kairos Health Arizona reports data breach
Synlab Italia shuts down operations due to ransomware …
Aspen Dental reports data breach after ransomware attack
Randolph Health reports data breach caused by compromised …
Mebourne based TissuPath Pathology impacted by third party …