NHS Hospitals Hit by Qilin Ransomware, Patient Data Leaked
Hospitals in southeast London faced a significant cyberattack on June 3, 2023, with the Russian ransomware group Qilin targeting Synnovis, a pathology service provider for the NHS. The attack, which operates under the 'Ransomware-as-a-Service' model, has disrupted operations and rescheduled appointments, affecting thousands of patients.
Qilin, known for its sophisticated malware and infrastructure, demanded a hefty 40 million pounds in Bitcoin to prevent the publication of sensitive patient data. The group has since published 400 gigabytes of data, including birth dates and test results for HIV and cancer. The NHS is currently verifying the authenticity of the leaked data, a process that could take weeks.
This attack follows a similar incident in February 2023, where Change Healthcare in the US suffered the most severe ransomware attack to date, leading to financial losses and legal action. Healthcare providers are seen as lucrative targets due to their often outdated computer infrastructure. Experts warn that future attacks may become more sophisticated with the use of generative AIs. Cybercriminals are likely to employ AI-powered phishing techniques, creating convincing fake emails and login pages to target patients and healthcare staff, increasing the risk of data breaches and system failures.
The Qilin attack on Synnovis highlights the vulnerability of healthcare systems to ransomware. With the potential use of generative AIs in future attacks, healthcare providers must prioritise cybersecurity measures to protect patient data and ensure the smooth operation of critical services.
