Compromiseseverity: Critical2024-06-03
Qilin ransomware compromise of Synnovis disrupts London NHS care
published by Synnovis
Actor
Russian-speaking ransomware-as-a-service operation tracked by vendors as Qilin (and earlier as Agenda). Best known publicly for the 3 June 2024 compromise of Synnovis — the pathology-services provide…
Summary
Qilin operators compromised Synnovis, the pathology-services joint venture serving Guy's and St Thomas', King's College Hospital, and Lewisham and Greenwich NHS Trusts in London. Synnovis-dependent blood testing across seven hospitals was knocked offline; trusts cancelled 1,134 planned operations and 2,194 outpatient appointments in the first 13 days. Qilin published 400GB of patient data on its DLS on 20 June 2024 after Synnovis refused a $50M ransom demand. UK regulators later cited the incident as a contributing factor in a patient death.
Tags
healthcareransomwareukpatient-impact