Cyber Attack on Synnovis IT Firm Triggers Critical Incident in London Hospitals

A cyber attack on IT firm Synnovis has led to a critical incident declaration across several major hospitals in London. The attack has severely disrupted medical services, forcing the cancellation of operations and blood transfusions at Guy's, St Thomas', King's College, Royal Brompton, and Harefield hospitals.

The incident, which occurred on Monday, has particularly impacted pathology services. According to Professor Ian Abbs, CEO of Guy's and St Thomas' NHS Foundation Trust, the attack has had a 'major impact on the delivery of our services, with blood transfusions being particularly affected.'

Consequently, some activities have been canceled or redirected to other providers at short notice. Royal Brompton and Harefield hospitals have canceled all transplant surgeries, and nearby hospitals are accepting extra patients to help mitigate the impact.

This cyber attack highlights the vulnerability of critical healthcare infrastructure to cyber threats, which can have devastating consequences for patient care and public health. If left unaddressed, such attacks can lead to widespread disruption of critical services, compromising the well-being of entire communities.

The disruption has caused significant frustration and uncertainty among patients and their families. One patient’s husband expressed his concerns, stating, 'My wife has a phlebotomy appointment at 7.40am for gestational diabetes checks amongst other things... She received a text at 7pm this evening saying phlebotomy services are canceled until further notice. What can she do? Is the appointment still taking place? Really poor communications.'

An incident response structure has been established, with regular meetings to assess the situation and implement contingency plans. The full extent of the damage and the duration of the disruptions remain unclear.

This cyber attack follows a recent incident at NHS Dumfries and Galloway in Scotland, where a large volume of stolen data was reportedly published on the dark web. The recurring nature of such attacks highlights the vulnerabilities in healthcare IT systems and the need for robust cybersecurity measures.

The affected hospitals are working tirelessly to restore normal services and minimize the impact on patient care. However, the incident highlights the critical importance of cybersecurity in protecting vital healthcare infrastructure.

Key Takeaways

• Cyber attack on IT firm Synnovis causes critical incident in London hospitals.
• Operations and blood transfusions canceled at 5 major hospitals.
• Pathology services severely disrupted, affecting patient care.
• Incident highlights vulnerability of healthcare infrastructure to cyber threats.
• Affected hospitals working to restore services and minimize impact.