Ransomware Attack on London NHS Pathology Firm Results in Data Breach and Service Disruptions

On June 3, 2024, Russian cybercriminal group Qilin executed a ransomware attack on Synnovis, a private pathology firm serving major London hospitals including Guy’s, St Thomas’, King’s College, Evelina Children’s Hospital, and Royal Brompton Hospital. The attack led to serious disruptions, including the cancellation of nearly 1,600 operations and thousands of outpatient appointments.

The cyberattack involved encrypting critical files within Synnovis’s IT systems, rendering them inaccessible and demanding payment for restoration. Qilin released over 400GB of stolen data on a darknet platform on June 20, 2024. The leaked information reportedly includes sensitive patient data such as names, dates of birth, NHS numbers, and descriptions of blood tests.

In response, NHS England, Synnovis, and the National Cyber Security Centre have initiated an investigation to ascertain the full extent of the data breach and its implications. Preliminary findings indicate the attack has heavily impacted medical services, particularly in South East London, delaying vital treatments, including cancer surgery and other major procedures.

This incident follows another recent cyberattack on the NHS Dumfries and Galloway health board, underscoring the healthcare sector’s vulnerability to cyber threats. Efforts are ongoing to restore affected services and ensure patient data security. Synnovis is working closely with cybersecurity experts and relevant authorities to mitigate the damage and prevent future occurrences.