NHS Hospitals Hit by Ransomware Attacks, Patient Data Compromised

NHS Hospitals Under Siege: Ransomware Attacks Disrupt Services and Expose Patient Data

Multiple National Health Service (NHS) hospitals in the United Kingdom are facing severe disruptions due to ransomware attacks, impacting emergency services and compromising sensitive patient information. Inc Ransom, a known Russia-linked group, has claimed responsibility for the attack on Alder Hey Children’s Hospital, one of Europe’s largest children’s hospitals. The group claims to have stolen patient records, donor reports, and procurement data from 2018-2024. New security apps may help detect such threats.

Alder Hey confirmed the breach, stating the attackers exploited a “digital gateway service” used by several hospitals, including Liverpool Heart and Chest Hospital and Royal Liverpool University Hospital. While hospital services remain operational, Alder Hey acknowledges the risk of data publication. The Wirral University Teaching Hospital, also located in north-west England, declared a “major incident” following a separate ransomware attack, leading to system shutdowns and impacting emergency services. This incident has not yet been attributed to a specific group. For more on macOS security threats, see our related article.

These attacks highlight the NHS's ongoing vulnerability to cyber threats. Earlier this year, a ransomware attack on Synnovis, a pathology services provider, caused significant disruption and a massive data breach. The UK government has outlined a strategy to bolster the NHS's cyber resilience by 2030 and plans to introduce a bill mandating ransomware attack reporting in 2025. Learn more about Apple's focus on security in their future plans.