The recent cyber attack on NHS provider Synnovis has led to stolen data being published online. The attack, believed to be carried out by the Russian group Qilin, occurred on June 3rd, affecting blood tests managed by Synnovis for NHS trusts and GP services in south-east London.
NHS England confirmed that hundreds of operations and appointments have been cancelled since the incident. While investigations are ongoing, Synnovis has stated that the cybercriminals did not publish the entire database, but it may take some time to determine the full impact on individuals.
The data shared by Qilin on the dark web included patient information such as names, dates of birth, NHS numbers, and descriptions of blood tests. Financial records between hospitals and GP services were also exposed.
Efforts are underway to minimize the impact on patients and process urgent blood samples efficiently. Patients are advised to attend appointments unless notified otherwise, as normal urgent care services remain available.