Ongoing Disruption from Qilin Ransomware Attack on NHS Vendor

Ongoing Disruption from Qilin Ransomware Attack on NHS Vendor

First seen 21 Apr 2026, 07:00 UTC DatabreachesTechnadu 73% similarity 68.0

Article Content

Browse articles
ThreatCluster

In June 2024, the Qilin ransomware syndicate infiltrated Synnovis, a pathology provider for the NHS, causing significant disruptions in healthcare services. As of early 2026, the South London and Maudsley NHS Foundation Trust (SLaM) is still experiencing operational challenges, with digital pathology systems remaining offline. Internal documents reveal a backlog of approximately 161,560 unfiled pathology reports and 122 patient safety incidents linked to the attack. The breach has led to reliance on manual processes for laboratory results, severely impacting patient care and safety. Notably, diagnostic delays contributed to a patient fatality in 2025. Additionally, other NHS trusts are still dealing with the ramifications of this attack, highlighting the urgent need for improved cybersecurity measures in healthcare. Recent breaches at NHS Scotland and DXS International further underscore ongoing vulnerabilities in the sector.

Key Points: • The Qilin ransomware attack on Synnovis in June 2024 continues to disrupt NHS services 18 months later. • SLaM has over 161,560 unfiled pathology reports and has recorded 122 patient safety incidents due to the breach. • A patient fatality in 2025 was linked to delays in diagnostic testing caused by the ransomware attack.

ThreatCluster AI

Timeline

2024-06-01
Qilin ransomware attack on Synnovis initiated.
2025-01-01
Patient fatality linked to diagnostic delays reported.
2026-04-19
Databreaches article highlights ongoing impacts on NHS Trust.
2026-04-20
Current status of NHS disruptions reported by Technadu.

Community

Browse all →