Synnovis cyber attack caused two cases of severe patient harm

At least two patients have suffered long-term or permanent damage to their health as a result of the cyber attack on NHS pathology provider Synnovis, latest figures have revealed. 

The ransomware attack on the 4 June 2024, caused widespread disruption to NHS services in London, with 10,152 acute outpatient appointments and 1,710 elective procedures postponed at King’s College Hospital NHS Foundation Trust and Guy’s and St Thomas’ NHS Foundation Trust.

Initial figures released by NHS South East London Integrated Care Board (ICB) in November 2024, recorded five cases of moderate harm and 114 cases of low harm as a result of the attack, but did not report any cases of serious harm. However, NHS data obtained by Bloomberg News revealed that healthcare professionals across at least four London boroughs recorded two cases of severe harm, 11 cases of moderate harm, and more than 120 cases of low harm as a direct consequence of the cyber attack.

Responding to the latest figures, Helen Hughes, Chief Executive at Patient Safety Learning, told Digital Health News: “This latest update highlights the significant risks to patient safety posed by cyber attacks. These events not only disrupt care and treatment but can result in serious avoidable patient harm."

“When cyber attacks occur, healthcare providers need to be vigilant of risks to the safety of vulnerable patients from delays to care and treatment."

“They should also have robust plans to recover services, prioritising patient safety, and must ensure that there are appropriate escalation routes to minimise future harm.”

Read full story.

Source: Digital Health, 23 January 2025