A ransomware attack, believed to be conducted by the Russian cybercriminal group known as Qilin, has significantly disrupted several major hospitals in London. Ciaran Martin, former chief executive of the National Cyber Security Centre, confirmed the group’s involvement in the attack on pathology services firm Synnovis, leading to a severe reduction in capacity and substantial operational challenges.

The incident has forced hospitals, including King’s College Hospital, Guy’s and St Thomas’ (which also comprises Royal Brompton and Evelina London Children’s Hospital), to declare a critical incident. Numerous operations, tests, and blood transfusions have been canceled due to the major IT disruption.

Mr. Martin explained that Qilin targets various organizations globally, typically aiming for financial gain. He suggested that the group may not have anticipated the extensive primary healthcare disruption caused by this attack. The ransomware used does not just steal data but renders systems inoperative, severely disrupting healthcare services.

The UK government maintains a policy against paying ransoms, although companies are free to decide. The National Cyber Security Centre is currently working with NHS officials to understand the full impact of the attack. Health Secretary Victoria Atkins emphasized patient safety as her primary concern and is overseeing efforts to restore services.

Synnovis, a partnership of SynLab UK & Ireland, Guy’s and St Thomas’ NHS Foundation Trust, and King’s College Hospital NHS Foundation Trust, has reported the incident to law enforcement and the Information Commissioner. The taskforce of IT experts from Synnovis and the NHS is prioritizing urgent patient care while assessing and mitigating the attack’s impact.