The Rhysida ransomware group has threatened to leak sensitive medical data belonging to members of the UK royal family after it breached the computer systems of King Edward VII’s Hospital, which has treated royals such as the Princess of Wales and Prince Philip in recent years. A ransom demand was made on the dark web, where the hackers posted images of what they claim are stolen files including X-rays, letters from consultants, registration forms, handwritten clinical notes and pathology forms, reported the Daily Mail. The UK National Cyber Security Centre (NCSC) has confirmed that it is engaging with the hospital to understand the impact of the incident.
The Rhysida attackers said they plan to release the data on Tuesday unless they are paid £300,000 in bitcoin. Last month, the group claimed responsibility for a highly disruptive cyber attack on the British Library before leaking 573 GB of stolen data.
In June, Russian hacktivist group KillNet launched a distributed-denial-of-service (DDoS) attack against the royal family’s official website which took it offline. KillNet claimed that the attack was launched as part of an “attack on pedophiles” – believed to be a reference to the allegations of sexual abuse of a minor made against Prince Andrew, Duke of York.
A hospital spokesman said that a “limited amount of patient information was copied” in the incident which primarily affected “benign hospital systems” data. “We took immediate steps to mitigate its impact and continued to offer patient care, largely as normal,” they added.
Former British military intelligence colonel, Philip Ingram, commented: “Given the highly sensitive nature of the patients, there will be a degree of pressure on the hospital to try to stop any of this data being released. Therefore, I would expect them to explore the possibility of paying the ransom.”
The healthcare sector is a prime target for cyber attacks, with the frequency and severity of incidents increasing in recent years. Last week, US healthcare provider Ardent Health Services faced disruption to clinical and financial operations at six locations following a ransomware attack.
Join the global cyber security online community
With more than 140,000 members, Cyber Security Hub is the vibrant community connecting cyber security professionals around the world.
With more than 140,000 members, Cyber Security Hub is the vibrant community connecting cyber security professionals around the world.
13 – 14 March, 2024
UK
March 18 – 19, 2024
Heathrow Marriott Hotel, London
19 – 21 March, 2024
Sheraton Ann Arbor Hotel, Ann Arbor, MI
June 11 – 13, 2024
Melbourne, Victoria
Insights from the world’s foremost thought leaders delivered to your inbox.
2021-05-19
01:00 PM – 02:00 PM EST
2021-06-09
11:00 AM – 12:00 PM EDT
2021-09-08
11:00 AM – 12:00 PM EST
Reach Cyber Security professionals through cost-effective marketing opportunities to deliver your message, position yourself as a thought leader, and introduce new products, techniques and strategies to the market.
Join CSHUB today and interact with a vibrant network of professionals, keeping up to date with the industry by accessing our wealth of articles, videos, live conferences and more.
Cyber Security Hub, a division of IQPC
Careers With IQPC| Contact Us | About Us | Cookie Policy
Become a Member today!
Already an IQPC Community Member?
Sign in Here or Forgot Password
Sign up now and get FREE access to our extensive library of reports, infographics, whitepapers, webinars and online events from the world’s foremost thought leaders.
We respect your privacy, by clicking ‘Subscribe’ you will receive our e-newsletter, including information on Podcasts, Webinars, event discounts, online learning opportunities and agree to our User Agreement. You have the right to object. For further information on how we process and monitor your personal data click here. You can unsubscribe at any time.
