Radiology practice reportedly working with FBI after ‘data security incident’

A Pacific Northwest radiology practice has reportedly worked with the FBI following a recent “data security incident.” 

Mt. Baker Imaging and Northwest Radiologists posted a notice of the matter on its website March 26. The Bellingham, Washington-based group said it first noticed the network disruption around Jan. 25, immediately engaging outside forensic specialists to help with the investigation. 

“We are currently reviewing the types of information potentially impacted by this event,” the message said. “However, Northwest/MBI has confirmed that a limited amount of protected health information may have been impacted in connection with this event.”

Possible leaked data could include dates of birth, Social Security and driver’s license numbers and diagnosis details. MBI said it has implemented additional security measures in its network and facilities and is reviewing policies and procedures pertaining to data security.

“Although Northwest/MBI has no evidence of actual misuse of information as a result of this event, it is always prudent to review healthcare statements for accuracy and report any services or charges that were not incurred to the provider or insurance carrier,” the practice said. 

The Cascadia Daily News first reported the security incident, noting that MBI also is working with the FBI (which isn’t mentioned in the official notice). Meanwhile, Seattle-based law firm Tousley Brain Stephens has sought patients interested in joining a class-action lawsuit against the radiology group, CDN said.  

Mt. Baker Imaging operates five outpatient centers around the coastal city near the Canadian border, while physicians at Northwest Radiologists interpret the images. The group has served Whatcom County for over 50 years, employing 20 subspecialized physicians. Northwest Radiologists also is a member of the Strategic Radiology independent practice coalition and services four PeaceHealth hospitals. 

Several radiology groups have experienced cyber incidents in recent months including SimonMed Imaging, Pinehurst Radiology Associates and University Diagnostic Medical Imaging. East River Medical Imaging PC, New York, in October was ordered to pay $1.85 million to settle a class-action lawsuit stemming from a 2023 cyberattack.