Cl0p ransomware has leaked 241 GB of data from the NHS and also breached The Washington Post, exposing personal information of nearly 10,000 users. The attacks exploit critical vulnerabilities in Oracle's E-Business Suite, which have been previously flagged by NHS cybersecurity alerts. Experts warn that many systems remain vulnerable despite patches released by Oracle.

Barts Health NHS Trust confirmed that the Cl0p ransomware group stole files from its invoice database, exposing sensitive information like patient names and addresses. The breach, which went undetected for months, highlights ongoing vulnerabilities in NHS cybersecurity, despite clinical records remaining safe.

DXS International, a tech provider for NHS England, reported a cyberattack that compromised its office servers. A ransomware group claimed responsibility, alleging they stole 300 gigabytes of data, though the extent of the breach and any impact on patient information remains unclear.

Synnovis has finished its 18-month investigation into a ransomware attack that disrupted NHS pathology services and contributed to a patient’s death. While the company confirmed data related to potentially 900,000 patients was compromised, it has not disclosed specifics on the number of individuals affected. Notifications to patients will be handled by the individual NHS organizations.

A Qilin ransomware attack on NHS supplier Synnovis has been linked to the death of a patient due to delays in blood test results. The attack disrupted services across multiple healthcare facilities, resulting in significant patient harm and the cancellation of thousands of medical appointments. The incident highlights ongoing cybersecurity challenges faced by the NHS and the potential life-threatening consequences of such cyberattacks.