Patients’ files were accessed in cyber attack
A Number of patients’ medical documents from a hospital in Leicester were accessed during a cyber attack.
Patients of Nuffield Health Hospital, in Scraptoft Lane, were informed in a letter confirming the data breach after a cyber attack on a third-party document management service supplier in October.
As a result of the attack, electronic scans of medical files from the private healthcare provider were accessed and some data was uploaded on to the internet, but no card payment data was involved.
The mercury understands that a review of the leaked data showed that, so far, there is no evidence Nuffield Health medical scans have been leaked.
An urgent investigation is ongoing since the attack on October 14 and the situation continues to be monitored.
Patients have been warned to be cautious of any communications from people claiming to be acting on behalf of Nuffield Health.
A Nuffield Health spokesman said: “We take our data protection and information security extremely seriously.
“A third-party document management services supplier which provides a file-scanning service to Nuffield Health Leicester Hospital has made us aware it has experienced a cyber attack and a security breach which involved unauthorised access to some of its servers.
“Data has subsequently been taken including Nuffield Health data. Nuffield Health has a full back-up of the data as is our standard practice.
“An urgent investigation is under way and we are liaising closely with the supplier and relevant regulatory bodies including the police, Serious Fraud Office and Information Commissioners Office.
We are also in the process of contacting those individuals concerned as a matter of urgency to alert them and offer guidance and support.”
The National Crime Agency has been contacted for comment.