A cyberattack on Synnovis, a key provider of diagnostic and blood transfusion services for the United Kingdom’s National Health Service (NHS), caused significant disruptions across medical facilities in London. According to information obtained by Bloomberg News, dozens of patients were affected, with two cases resulting in long-term or irreversible consequences.
The incident occurred in June 2024, orchestrated by the cybercriminal group Qilin, which demanded a ransom of $50 million from Synnovis. Following the company’s refusal to comply, the attackers leaked stolen medical data online, including diagnostic test results of patients from the UK and Ireland.
The attack crippled NHS laboratories in four London boroughs, leading to the cancellation of over 10,000 appointments and 1,700 surgeries. In the immediate aftermath, laboratory services were operating at only 10% of their normal capacity. This disruption severely impacted patients, including those requiring dialysis and urgent blood tests.
Internal NHS documents revealed the attack’s consequences as follows:
- 2 cases of severe health damage, resulting in long-term or irreversible effects for patients,
- 11 cases of moderate health damage, leading to medium-term deterioration in condition,
- Over 120 cases of mild health damage, causing short-term complications.
Experts caution that the true extent of the repercussions may be greater, as delays in treatment could lead to deteriorating health months or even years later.
Cyberattacks targeting healthcare systems are becoming alarmingly frequent. According to Microsoft, ransomware attacks have surged by 300% over the past decade. The NHS has faced major incidents before, most notably in 2017 when the WannaCry virus paralyzed hospitals across the UK, resulting in the cancellation of 19,000 appointments.
Bloomberg reports that the 2024 attack exploited known vulnerabilities within the digital systems of London hospitals. However, an NHS South East London representative stated that, despite the severe impact, the health service was prepared for the incident and received support from its partners.
