A ransomware gang has reportedly released 400 gigabytes of data they stole from Synnovis, a UK-based medical testing services provider.

The UK health system, the National Health Service, said today that law enforcement agencies are working to verify the data. “The National Crime Agency and the National Cyber ​​Security Centre are working to verify the data contained in the files released by the criminals,” the NHS said in a opinion“These files are not simple uploads, so investigations of this kind are extremely complex and can take weeks or even longer.”

Synnovis is a joint venture between the British NHS and Synlab AG, a Munich-based provider of medical testing services. The company carries out blood tests for four London hospitals. In a ransomware attack on June 3, a group of hackers downloaded data from the company's network and paralyzed some of its internal systems.

The hacker group, known as Qilin, released about 400 gigabytes of data stolen in the attack on Thursday. A subset of the data BBC The leaked data was found to include names, dates of birth, NHS numbers and descriptions of blood tests of patients. In addition, the leaked trove of data reportedly includes tables with information about transactions between hospitals, GPs and Synnovis.

The NHS said there was no evidence that the hackers had gained access to its email system. “However, we would like to remind you that you will not receive any unexpected requests from the NHS asking for personal or financial information,” it warned.

As well as stealing data, the hackers also disrupted some of Synnovis' clinical operations. On June 14, 11 days after the breach, the NHS announced that around 1,500 planned surgeries and outpatient appointments had to be postponed because of the breach. On Thursday, officials said that number had more than doubled to around 3,300.

“Unprocessed samples have been secured by Synnovis and stored in their laboratories,” the NHS said today. “However, as some of these samples are now no longer suitable for analysis, they will need to be disposed of. Synnovis is working with NHS trusts and GP practices to identify which samples are affected and how patients will be informed.”

The NHS has set up a helpline to answer patient questions about the data breach and a website has been set up to provide up-to-date information about the data compromised in the breach.

The Synnovis data leak is the latest in a series of high-profile cyberattacks on healthcare organizations.

Last month, US health system Ascension disclosed that a cyberattack had disrupted some of its clinical processes. Hackers had previously leaked Data was stolen from a business unit of UnitedHealth Group Inc., the largest health insurer in the United States. The latter data theft left many doctors temporarily unable to process medical claims or fill prescriptions.

Photo: Raxpixel

Your support is important to us and helps us keep the content FREE.

By clicking below you support our mission to provide free, in-depth and relevant content.

Join our community on YouTube

Join the community of more than 15,000 #CubeAlumni experts, including CEO Andy Jassy, ​​Dell Technologies Founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner for the industry. You are truly a part of our events and we are very happy that you are coming. And I know that people also appreciate the content that you create” – Andy Jassy


Related Post

Leave a Reply

Your email address will not be published. Required fields are marked *