Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Ransomware

Two UK Hospitals Hit by Cyberattacks, One Postponed Procedures

Alder Hey Children’s Hospital and Wirral University Teaching Hospital have fallen victim to cyberattacks, including one involving ransomware.

Healthcare data breach

Two National Health Service (NHS) hospitals in the UK disclosed cyberattacks last week, and at least one of the attacks was conducted by a ransomware group.

Alder Hey Children’s Hospital said it was investigating claims that its systems may have been breached and that patient records and other information was stolen.

“We are aware that data has been published online and shared via social media that purports to have been obtained illegally from systems shared by Alder Hey and Liverpool Heart and Chest Hospital NHS Foundation Trust. We are working with partners to verify the data that has been published and to understand the potential impact,” the hospital said.

The statement was published just as the ransomware group named Inc Ransom added Alder Hey to its Tor-based leak site, claiming the theft of patient records, donor reports, and other information. The data, the gang claims, is dated 2018 – 2024.

In its statement, the hospital said it was working on securing its systems, but noted that the incident had no impact on the availability of its services.

“This incident is not linked to the ongoing incident at Wirral University Teaching Hospitals,” Alder Hey said.

Wirral University Teaching Hospital announced last week it was scrambling to respond to a cyberattack that forced it to shut down its systems and revert to pen and paper.

“After detecting suspicious activity, as a precaution, we isolated our systems to ensure that the problem did not spread. This resulted in some IT systems being offline. We have reverted to our business continuity processes and are using paper rather than digital in the areas affected,” the hospital announced.

Advertisement. Scroll to continue reading.

Wirral said that while its services were still available during the incident, some planned services had been disrupted, including scheduled appointments, and some procedures were postponed.

“The Trust continues to prioritize emergency treatment but there are likely to be longer than usual waiting times for unplanned treatment in our Emergency Department and assessment areas,” the hospital said.

While Wirral University Hospital did not say what type of cyberattack it fell victim to, ransomware might have been involved, as shutting down systems is the usual response to such an attack. SecurityWeek has not seen any known ransomware group claiming responsibility for the incident.

Related: Microlise Confirms Data Breach as Ransomware Group Steps Forward

Related: State Workers to Be Paid on Time Despite Ransomware Attack

Related: Bipartisan Legislation Seeks Stronger Healthcare Cybersecurity

Related: Ahold Delhaize Cybersecurity Incident Impacts Giant Food, Hannaford

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Discover strategies for vendor selection, integration to minimize redundancies, and maximizing ROI from your cybersecurity investments. Gain actionable insights to ensure your stack is ready for tomorrow’s challenges.

Register

Dive into critical topics such as incident response, threat intelligence, and attack surface management. Learn how to align cyber resilience plans with business objectives to reduce potential impacts and secure your organization in an ever-evolving threat landscape.

Register

People on the Move

Karl Triebes has joined Ivanti as Chief Product Officer.

Steven Hernandez has joined USAID as CISO and Deputy CIO.

Data security and privacy firm Protegrity has named Michael Howard as its CEO.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.