Triad Radiology Associates (TRA) Data Breach

Key Facts: Triad Radiology Associates Data Breach

• Date reported: February 24, 2026.
• Unauthorized access identified: July 11, 2025 (detected July 30, 2025).
• Target entity: Triad Radiology Associates (triadradiology.com).
• Source of breach: Unauthorized access to an employee email account.
• Data types: Full names, addresses, dates of birth, Social Security numbers, driver's license numbers, bank account information, medical information, and health insurance details.
• Status: Confirmed; a comprehensive file review concluded on December 10, 2025, and notification letters were mailed starting February 11, 2026.
• Severity: High; the breach involved sensitive protected health information (PHI) and financial identifiers for 11,011 individuals and remained active for several weeks.

Start continuous breach monitoring with UpGuard.

What happened in the Triad Radiology Associates data breach?

Triad Radiology Associates (triadradiology.com), a Winston-Salem-based medical imaging practice, reported a significant data breach on February 24, 2026. The incident resulted from unauthorized access to an employee's email account. While the practice initially detected suspicious activity on July 30, 2025, subsequent forensic investigations revealed that the unauthorized access actually commenced on July 11, 2025. This indicates that the breach remained active for nearly 40 days before being fully contained.

A comprehensive file review concluded in December 2025 confirmed that 11,011 individuals had their sensitive information exposed. The breach is classified as high severity due to the breadth of data accessed, including Social Security numbers and medical records. Such incidents typically expose affected individuals to heightened risks of targeted fraud and identity theft.

Who is behind the incident?

The attacker or cause of the incident has not been identified.

Impact and risks for Triad Radiology Associates customers

The exposure of sensitive information for 11,011 individuals poses a serious risk of identity theft and financial fraud. Because the data included Social Security numbers, driver’s license numbers, and bank account details, affected parties may face unauthorized financial transactions or fraudulent credit applications. Furthermore, the inclusion of medical and health insurance information could lead to medical identity theft or highly personalized phishing attacks designed to solicit further sensitive details.

Incidents involving comprehensive personal datasets often require long-term vigilance from those affected. Impacted individuals should immediately update their login credentials, monitor all financial statements, and place fraud alerts on their credit files. Maintaining transparency regarding the breach timeline is a critical step in helping victims mitigate these potential harms.

How to protect against similar security incidents

Get instant alerts when your data appears on the dark web.

Frequently asked questions

What happened in the Triad Radiology Associates security breach?

On February 24, 2026, Triad Radiology Associates (triadradiology.com) disclosed a security breach. According to initial reports, an unauthorized party gained access to an employee's email account, leading to the exposure of sensitive personal and medical data for 11,011 individuals.

When did the Triad Radiology Associates breach occur?

The Triad Radiology Associates breach occurred between July 11, 2025, and September 8, 2025. Although suspicious activity was identified in late July, investigations suggest limited unauthorized access may have persisted until early September.

What data was exposed?

The investigation confirmed that the exposed data included names, addresses, dates of birth, Social Security numbers, driver's license numbers, bank account details, and sensitive medical and health insurance information.

Is my personal information at risk?

If you interacted with Triad Radiology Associates, there is a possibility your personal information was affected. Similar incidents often involve sensitive identifiers like Social Security numbers or medical history. Stay alert for official notification letters and consider the identity protection services being offered.

How can I protect myself after this data breach?

• Change passwords for all sensitive accounts
• Enable multi-factor authentication (MFA) where available
• Monitor financial and medical statements for unauthorized activity
• Watch for phishing emails or suspicious communications
• Use data breach monitoring tools to track your information

What steps should companies take after being impacted by this breach?

Triad Radiology Associates has worked to secure its systems, notify affected parties, and provide guidance on protective actions. Companies typically review internal security measures and deploy attack surface management to help prevent similar future incidents.