The National Cyber Security Centre (NCSC) – a part of GCHQ – is aware that a cyber criminal group has published data which it claims belongs to Synnovis, a provider of pathology services to the NHS.

This follows a ransomware incident which Synnovis fell victim to in June 2024. Investigations are ongoing, led by partners, to determine whether the published data was extracted from Synnovis, and if so whether the contents relate to NHS patients. 

The NCSC has published guidance to help people protect themselves from the impacts of data breaches.

“The reports of sensitive data being published online by cyber criminals are very concerning and we are working with Synnovis and partners in the NHS and law enforcement to fully investigate,” Eleanor Fairford, NCSC Deputy Director for Incident Management, said. “While investigations to determine whether sensitive data have been leaked are ongoing, we advise people to remain alert to suspicious messages or calls from would-be fraudsters who might try to exploit the situation.

“To help protect against the impacts of any data breach, we advise individuals to follow our practical advice, available at ncsc.gov.uk.”

Ransomware remains the most acute cyber threat facing the vast majority of UK organisations. Advice on how to effectively mitigate attacks can be found via the NCSC’s ransomware hub.

The NHS will provide updates on the incident as more information becomes available via NHS England’s digital.nhs.uk website. A helpline has been set up and is available to answer questions.

To read more NCSC news, click here.