Synnovis [1] [2] [3] [4] [5] [6] [7] [8] [9], a provider of testing services [6] [8], recently experienced a ransomware attack by the Russian cyber-criminal group Qilin, causing significant disruptions at King’s College Hospital NHS Foundation Trust and Guy’s and St Thomas’ NHS Foundation Trust [1].
Description
This cyberattack led to a decrease in sample processing capacity, compromising patient data and resulting in the cancellation of numerous operations and appointments. As a result [3] [5], the NHS issued an urgent appeal for blood donors [5] [9], particularly those with O negative blood [8], crucial for emergencies [6]. Despite the ransom demands, Synnovis is actively working to rebuild over 60 interconnected IT systems and restore service capacity. Chemistry and hematology services are now operational at select hospitals in London [2], with blood transfusion services expected to be fully restored by early Autumn [1] [7]. Mutual aid arrangements are in place for planned operations and transplants, with progress being made in restoring routine blood tests [1]. An ongoing investigation by external IT experts is underway to verify details, with updates to be provided as progress is made. Most services are now operating at near-normal levels [2], and patients are encouraged to attend booked appointments unless otherwise notified [2]. The cyber incident has led to a severe shortage of blood supplies, with thousands of blood donation appointments canceled and blood stocks at unprecedentedly low levels [8]. An ‘amber alert’ has been issued [8], advising hospitals to restrict the use of O type blood to essential cases [1] [8]. Hospitals have seen a nearly doubled requirement for O negative blood since the attack [8]. Synnovis [1] [2] [3] [4] [5] [6] [7] [8] [9], a blood testing partnership [5] [9], was hit by ransomware hackers [5] [9], causing significant disruption to its blood transfusion services [5] [9]. The systems were made unusable unless a payment was received [5], leading to the cancellation of hundreds of operations and thousands of appointments [5] [9]. The NHS made an urgent appeal for blood donors as a result of the attack [5]. Synnovis has been working to rebuild its systems and expects to have its services stabilised over the summer [5]. The attack was claimed by the Russian cyber-criminal group Qilin [5] [9], who attempted to extort money from Synnovis [5]. Despite not paying the hackers [5] [9], Synnovis is working to restore its services and access critical data from backups [5]. The company is still investigating how the hack occurred and the full extent of the data breach [5].
Conclusion
The cyberattack on Synnovis has had far-reaching impacts, including disruptions to critical healthcare services and a severe shortage of blood supplies. Despite these challenges [2], efforts are underway to restore services and mitigate the effects of the attack. Moving forward, it is crucial for organizations to strengthen their cybersecurity measures to prevent similar incidents in the future.
References
[1] https://www.england.nhs.uk/london/2024/07/25/update-on-cyber-incident-clinical-impact-in-south-east-london-thursday-25-july/
[2] https://www.infosecurity-magazine.com/news/synnovis-restores-blood-shortages/
[3] https://www.inforisktoday.com/uk-blood-stocks-drop-after-ransomware-hack-a-25856
[4] https://www.bankinfosecurity.com/uk-blood-stocks-drop-after-ransomware-hack-a-25856
[5] https://ratingmania.com/blog/autumn-date-to-fix-hacked-blood-transfusion-services/
[6] https://uk.news.yahoo.com/uk-hospitals-face-unprecedented-blood-153014082.html
[7] https://www.synnovis.co.uk/news-and-press/update-on-cyber-incident-25-july-2024
[8] https://www.devdiscourse.com/article/technology/3030139-british-hospitals-grapple-with-blood-supply-shortage-amid-cyber-attack
[9] https://www.bbc.co.uk/news/articles/c035y64vyvqo