A ransomware attack on a third-party provider of pathology services has caused significant disruptions at major hospitals in London, prompting authorities to declare a critical incident emergency status. The attack targeted Synnovis, a company responsible for offering pathology services, including blood tests for transfusions to healthcare organizations in the region.
According to a spokesperson for NHS England London, the hospital network has been disconnected from Synnovis IT servers as a precautionary measure. The impact of the ransomware attack has been especially severe at Guy’s and St Thomas’ hospitals, King’s College Hospital NHS Foundation Trusts, and primary care services in southeast London. Patients using NHS services within the two partner hospitals, as well as GP services in several boroughs, have been affected by the disruption.
In addition to these facilities, the renowned Royal Brompton and Harefield hospitals, specializing in heart and lung treatments, have also reported being impacted by the cyberattack. As a result of the attack, some appointments have been canceled, and patients have been redirected to other hospitals at short notice, causing strain on the healthcare system.
The disruption in the blood transfusion IT system poses a risk to trauma cases, with only urgent blood components being transfused when critically necessary for patients. Efforts are underway by the Department of Health and Social Care, NHS England, and the National Cyber Security Centre to address the cyber incident and support affected organizations while prioritizing patient safety.
The CEO of Synnovis, Mark Dollar, acknowledged the severity of the situation and highlighted the collaborative efforts between IT experts from Synnovis and the NHS to assess the damage and implement necessary measures. Despite the investment in high-level IT security, Dollar emphasized that cyberattacks can happen at any time and to anyone. He expressed regret for the disruption caused to patients and service users and pledged to work closely with NHS Trust partners to minimize the impact.
In light of this ransomware attack and similar incidents in the healthcare sector, stakeholders have been urged to remain vigilant, prioritize cybersecurity protocols, and collaborate to strengthen defenses against cyber threats. Preserving patient data and maintaining trust in healthcare services are crucial priorities in the ongoing battle against cybercrime in the industry.
The attack serves as a stark reminder of the evolving landscape of cyber threats and the critical need for proactive measures to safeguard sensitive information and maintain the integrity of healthcare services. As authorities continue to investigate the incident and mitigate its impact, the focus remains on ensuring the continuity of care for patients while bolstering cybersecurity measures to prevent future attacks.