{"id":168480,"date":"2024-09-17T07:02:22","date_gmt":"2024-09-17T07:02:22","guid":{"rendered":"https:\/\/securityaffairs.com\/?p=168480"},"modified":"2024-09-17T07:02:24","modified_gmt":"2024-09-17T07:02:24","slug":"qilin-attack-on-synnovis-impacted-900000-patients","status":"publish","type":"post","link":"https:\/\/securityaffairs.com\/168480\/data-breach\/qilin-attack-on-synnovis-impacted-900000-patients.html","title":{"rendered":"Qilin ransomware attack on Synnovis impacted over 900,000 patients"},"content":{"rendered":"
<\/div>\n

The personal information of a million individuals was published online following a ransomware attack that in June disrupted NHS hospitals in London.<\/h2>\n\n\n\n

In June, a ransomware attack on pathology and diagnostic services provider Synnovis<\/a> has severely impacted the operations at several major NHS hospitals in London. The attack forced the impacted hospitals to cancel some healthcare procedures, in some cases, patients were redirected to other hospitals.<\/p>\n\n\n\n

Synnovis is a pathology partnership between Guy\u2019s and St Thomas\u2019 NHS Foundation Trust and King\u2019s College Hospitals NHS Trust, and SYNLAB, Europe\u2019s largest provider of medical testing and diagnostics.<\/p>\n\n\n\n

In a post<\/a> published on its website, Synnovis disclosed it was the victim of a ransomware attack.<\/p>\n\n\n\n

CaseMatrix researchers told Recorded Future News that personal information of a million individuals was published online following the June ransomware attack.<\/p>\n\n\n\n

“People with symptoms of sensitive medical conditions, including cancer and sexually transmitted infections, are among almost a million individuals who had their personal information published online following a\u00a0ransomware attack\u00a0that disrupted NHS hospitals in London earlier this year, according to an analysis shared with Recorded Future News.” reported<\/strong><\/a> Recorded Future News.<\/em><\/p>\n\n\n\n

CaseMatrix is the only firm that assessed the number of individuals impacted by the security breach. The company reported that over 900,000 individuals were impacted by the security breach.<\/gwmw><\/p>\n\n\n\n

NHS England and Synnovis have not provided official counts or details on the compromised data. <\/gwmw><\/gwmw><\/gwmw><\/p>\n\n\n\n

On June, the Qilin ransomware<\/a> gang published the stolen data on its Tor leak site. <\/p>\n\n\n\n

\"Synnovis\"<\/a><\/figure>\n\n\n\n

<\/gwmw><\/gwmw>CaseMatrix reported that the dataset released by Qilin contained 1.29 million entities, including duplicates. The company also acknowledged a 2-3% error rate.<\/gwmw><\/p>\n\n\n\n

Leaked data includes sensitive information, including patients’ histology tests and clinical analysis results.<\/p>\n\n\n\n

The leaked data includes patient names, dates of birth, NHS numbers, and in some cases, personal contact details. It also includes pathology and histology forms, which often describe symptoms of intimate and private medical conditions shared between medical departments and institutions.<\/p>\n\n\n\n

\u201cWe are not in a position to comment on or confirm the validity or accuracy of analysis carried out by other parties, nor can we verify whether the data examined by these parties is in fact related to this incident.\u201d reads a statement published by Synnovis.<\/p>\n\n\n\n

In August, Synnovis obtained a preliminary injunction<\/a> from the English High Court against the Qilin ransomware group, Telegram, and a leak site to prevent the publication of stolen data. However, such injunctions are hard to enforce due to defendants often being in unreachable jurisdictions, they allow the victims to notify platforms like Telegram and ISPs to remove the stolen data. <\/p>\n\n\n\n

In this case, following this injunction, Telegram blocked the channel used by Qilin ransomware gang to leak the data stolen from the victims.<\/gwmw><\/p>\n\n\n\n

Synnovis said the action aimed to reassure patients and employees and limit the misuse of the stolen information.<\/gwmw><\/p>\n\n\n\n

Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/strong><\/a><\/p>\n\n\n\n

Pierluigi Paganini<\/strong><\/a><\/p>\n\n\n\n

(<\/strong>SecurityAffairs<\/strong><\/a>\u00a0\u2013<\/strong>\u00a0hacking, ransomware)\u00a0<\/strong><\/p>\n\n\n\n

<\/gwmw><\/gwmw><\/p>\n","protected":false},"excerpt":{"rendered":"

The personal information of a million individuals was published online following a ransomware attack that in June disrupted NHS hospitals in London. In June, a ransomware attack on pathology and diagnostic services provider Synnovis has severely impacted the operations at several major NHS hospitals in London. The attack forced the impacted hospitals to cancel some […]<\/p>\n","protected":false},"author":1,"featured_media":168489,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3323,3,4337,7],"tags":[88,182,4112,9508,9506,10918,30,687,15223,841,1533,15141],"class_list":["post-168480","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-breaking-news","category-cyber-crime","category-data-breach","category-malware","tag-cybercrime","tag-data-breach","tag-hacking","tag-hacking-news","tag-information-security-news","tag-it-information-security","tag-malware-2","tag-pierluigi-paganini","tag-qilin-ransomware","tag-security-affairs","tag-security-news","tag-synnovis"],"yoast_head":"\n杭州江阴科强工业胶带有限公司