Daily Washington Insider
  • Business
  • World
  • Science
  • Investing

Daily Washington Insider

  • Business
  • World
  • Science
  • Investing
Science

NHS software provider faces £6m fine after hackers steal tens of thousands of medical records

by admin August 7, 2024
August 7, 2024
NHS software provider faces £6m fine after hackers steal tens of thousands of medical records

A major NHS IT provider faces a penalty of just over £6m for failures which led to a cyber attack and the theft of nearly 83,000 medical records.

The Information Commissioner’s Office (ICO) has been investigating Advanced, which supplies vital systems for the health service, since the breach on 4 August 2022.

The cyber attack had wide-ranging implications, affecting the system used to dispatch ambulances, book out-of-hours appointments and issue emergency prescriptions.

In a provisional ruling, the ICO says the software provider breached data protection law by failing to secure personal information belonging to 82,946 people.

Their records were stolen in a ransomware attack by hackers who gained entry to Advanced’s computer systems using an account which did not have multi-factor authentication (MFA).

Typically MFA would prevent cyber criminals from using stolen passwords to secure access.

The data included sensitive information, phone numbers, medical records and information about how to gain entry to the properties of 890 people receiving care at home.

The disruption affected critical services such as NHS 111 and meant other healthcare staff were unable to access patient records.

People affected by the breach have been notified, and there is no evidence any data was published on the dark web.

The ICO has provisionally decided to impose a fine of £6.09m but the final ruling, and any penalty, will depend on the response from Advanced.

John Edwards, UK Information Commissioner, said: “Not only was personal information compromised, but we have also seen reports that this incident caused disruption to some health services.

“For an organisation trusted to handle a significant volume of sensitive and special category data, we have provisionally found serious failings in its approach to information security.”

Advanced released an update following the data breach confirming patient information was copied from their systems before being encrypted.

Typically ransomware attacks involve scrambling victims’ data and making it inaccessible unless they pay up.

The ransomware attack in 2022 led the Welsh Ambulance Service to declare a “major outage” of the system used to refer patients from 111 to out-of-hours GP providers.

It said the issue had affected all four nations in the UK.

In 2018, the NHS was severely affected by the WannaCry cyber attack, leading to thousands of cancelled appointments at a cost of nearly £100m.

This post appeared first on sky.com

0
FacebookTwitterGoogle +Pinterest
previous post
‘It’s war’: Elon Musk’s X sues companies for not advertising on its platform
next post
Hungry and displaced Gazans see their misery continuing with Hamas’ new leadership

You may also like

Tim Peake: Astronauts stranded on International Space Station...

July 24, 2024

Mars could have enough water stored underground to...

August 13, 2024

Northern Lights could be visible in England and...

May 10, 2024

Instagram access blocked in Turkey following Hamas leader...

August 2, 2024

Half-a-billion-year-old slug with spikes reveals origins of molluscs

August 2, 2024

North Korea-backed group ‘in cyber campaign to steal...

July 26, 2024

TikTok sued by 13 US states for ‘harming...

October 9, 2024

Nvidia overtakes Apple as world’s second most valuable...

June 6, 2024

Nearly complete dinosaur fossil sells for record £34m

July 18, 2024

Google reveals updated range of Pixel phones, watches,...

August 14, 2024

    Stay updated with the latest news, exclusive offers, and special promotions. Sign up now and be the first to know! As a member, you'll receive curated content, insider tips, and invitations to exclusive events. Don't miss out on being part of something special.


    By opting in you agree to receive emails from us and our affiliates. Your information is secure and your privacy is protected.

    Popular

    • 1

      Tartana Drilling to Verify Upgrading of 45,000 Tonne Copper Resource

    • 2

      Hong Kong plans to install thousands of surveillance cameras. Critics say it’s more proof the city is moving closer to China

    • 3

      Magic mushrooms effective for treating depression – study

    • 4

      UN experts urge Thailand not to deport dozens of Uyghurs to China where they face ‘real risk of torture’

    • 5

      China executes man who plowed car into crowds in deadliest attack in a decade

    Categories

    • Business (1,276)
    • Investing (3,316)
    • Science (605)
    • World (3,677)
    Footer Logo

    Disclaimer: dailywashingtoninsider.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

    Copyright © 2024 dailywashingtoninsider.com | All Rights Reserved