Patient data held by hacker group after cyber attack, health board confirms
NHS Dumfries and Galloway suffered a cyber attack earlier this month.
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.A hacker group is in possession of at least a “small number” of patients’ data following a cyber attack, NHS Dumfries and Galloway has said.
Reports emerged on Wednesday of a post by the group INC Ransom on its dark web blog, alleging it has three terabytes of data from NHS Scotland – although the Scottish Government said the incident has been contained to the one health board.
The post included a “proof pack” of some of the data, which has been confirmed by the board to be genuine.
In a statement posted to the health board’s website, its chief executive Jeff Ace said: “We absolutely deplore the release of confidential patient data as part of this criminal act.
“This information has been released by hackers to evidence that this is in their possession.
“We are continuing to work with Police Scotland, the National Cyber Security Centre, the Scottish Government, and other agencies in response to this developing situation.”
Patients whose data has been leaked will be contacted by the board, he said, while patient-facing services will continue as normal.
Mr Ace said: “NHS Dumfries and Galloway is very acutely aware of the potential impact of this development on the patients whose data has been published, and the general anxiety which might result within our patient population.”
The board was hit by the cyber attack earlier this month, which it said at the time had put a “significant amount” of data at risk, but it had little impact on services for patients.
A Police Scotland spokeswoman said: “Police Scotland inquiries are continuing into a cyber attack on NHS Dumfries & Galloway.”
A spokesman for the National Cyber Security Centre said: “We are working with law enforcement, NHS Scotland and the Scottish Government to fully understand the impact of an incident.”
A spokeswoman for the Scottish Government said: “We are aware of some data published on the web that is linked to the recent cyber attack on NHS Dumfries and Galloway.
“This incident remains contained to NHS Dumfries and Galloway and there have been no further incidents across NHS Scotland as a whole.
“The Scottish Government is working with the health board, Police Scotland and other agencies, including the National Crime Agency and National Cyber Security Centre, to assess the level of this breach and the possible implications for individuals concerned.
“The Scottish Government is continuing to provide support to NHS Dumfries and Galloway as they deal with this ongoing situation. This remains an ongoing police investigation.”