The INC Ransom extortion gang is threatening to publish three terabytes of knowledge allegedly stolen after breaching the Nationwide Well being Service (NHS) of Scotland.
In a put up yesterday, the cybercriminals shared a number of pictures containing medical particulars and mentioned that they’d leak knowledge “quickly,” until the NHS pays a ransom.
Scotland’s NHS is the nation’s public well being system, offering providers starting from main care, hospital care, dental care, pharmaceutical, and long-term care.
INC Ransom is an information extortion operation that emerged in July 2023 and targets organizations in each the general public and the non-public sector. Among the many victims are schooling, healthcare, and authorities organizations, and industrial entites like Yamaha Motor.
Reviews a couple of cybersecurity incident disrupting NHS Scotland providers appeared on March 15, probably when the assault occurred.
In yesterday’s put up, the risk actor printed a number of pattern paperwork with delicate details about docs and sufferers, together with medical assessments, evaluation outcomes, and psychological experiences.
Just one regional well being board affected
A spokesperson for the Scottish Authorities instructed BleepingComputer that the cyberattack impacts solely NHS Dumfries and Galloway, one of many regional well being boards that make up NHS Scotland.
“We’re conscious of some knowledge printed on the net that’s linked to the latest cyber-attack on NHS Dumfries and Galloway. This incident stays contained to NHS Dumfries and Galloway and there have been no additional incidents throughout NHS Scotland as an entire,” – Scottish Authorities
The spokesperson added that the federal government is working with a number of entities, together with the well being board, Police Scotland and different companies (e.g. Nationwide Crime Company, Nationwide Cyber Safety Centre) to find out the influence of the breach “and the attainable implications for people involved.”
In the meantime, NHS Dumfries and Galloway has confirmed right now {that a} ransomware group leaked scientific knowledge regarding a small variety of sufferers.
The group states that this was the results of the cyberattack that occurred two weeks in the past, which compromised its IT methods and resulted within the unauthorized entry of “a major quantity of knowledge together with affected person and staff-identifiable data.”
“We completely deplore the discharge of confidential affected person knowledge as a part of this felony act,” acknowledged NHS Dumfries and Galloway Chief Govt Jeff Ace.
“This data has been launched by hackers to proof that that is of their possession.”
Ace mentioned that patient-facing providers are working usually, and the group is working with the police and the Nationwide Cyber Safety Middle (NCSC) to formulate a response to the scenario.
Furthermore, he assured that every one sufferers who had their data leaked on-line can be knowledgeable straight by the NHS so they might take the suitable measures to guard themselves.