DXS Worldwide, a U.Ok.-based firm that gives healthcare tech for England’s Nationwide Well being Service (NHS), disclosed a cyberattack in a press release on Thursday.
In a submitting with the London Inventory Change, the corporate mentioned it skilled a “a security incident affecting its workplace servers,” found on December 14. The corporate mentioned it “instantly” contained the breach working along with the NHS, and employed a cybersecurity agency to research “the character and extent of the incident.”
“There was minimal influence on the corporate’s companies and the corporate’s front-line medical companies stay unaffected and operational,” learn the submitting.
At this level, the particular nature of the breach just isn’t recognized, nor whether or not any sufferers’ medical info was stolen.
Nonetheless, earlier this week, a ransomware group referred to as DevMan took credit score for the breach. In a publish on its darkish website, which information.killnetswitch has seen, the hackers listed the corporate on December 14 and claimed to have stolen 300 gigabytes of information from the corporate.
DXS mentioned it additionally notified legislation enforcement and regulators, together with the U.Ok.’s knowledge safety authority, the Info Commissioner’s Workplace, or ICO, in regards to the cyberattack.
Contact Us
Do you could have extra details about the breach at DXS Worldwide? From a non-work machine, you possibly can contact Lorenzo Franceschi-Bicchierai securely on Sign at +1 917 257 1382, or through Telegram and Keybase @lorenzofb, or e mail.
NHS England spokesperson Katie Baldwin instructed information.killnetswitch that the well being service is “not conscious of any affected person companies being impacted.”
Representatives from DXS and the ICO didn’t instantly reply to a collection of questions despatched by information.killnetswitch.
On its web site, DXS says it offers software program that helps to scale back prices for docs and first care physicians. As such, the corporate’s software program touches affected person information and knowledge. The corporate additionally says that in some circumstances, its options are hosted on the NHS’ Well being and Social Care Community (HSCN), which is a system for healthcare organizations throughout the U.Ok. to entry and share info.
Typically talking, the NHS doesn’t retailer affected person’s medical knowledge in a centralized system.
