Categories: SecurityWorkspace

Ransomware Group Threatens To Release Hospital Patient Photos

Hackers have threatened to release before-and-after patient photos stolen from a prominent UK hospital chain specialising in cosmetic surgery and weight loss.

The Hospital Group, also known as the Transform Hospital Group, confirmed it had been hit by a ransomware attack.

“We can confirm that our IT systems have been subject to a  data security breach,” the group said in a statement provided to the BBC.

“None of our patients’ payment card details have been compromised but at this stage, we understand that some of our patients’ personal data may have been accessed.”

Data theft

The groups aid it has informed the Information Commissioner’s Office (ICO) of the incident.

Hacking group REvil, known for a May hack of celebrity law firm Grubman Shire Meiselas & Sacks, as well as strikes on other prominent targets, claimed responsibility for the incident on a dark web site.

The the “intimate photos of customers” were “not a completely pleasant sight” the group said, claiming it had stolen 900 gigabytes of patient photographs.

In May the REvil group, also known as Sodinokibi, demanded $42 million (£31m) from New York-based GSMS after claiming it had compromised the company’s IT systems and stolen 756 gigabytes on A-list celebrities.

GSMS’ list of clients includes well-known figures such as Lady Gaga, Madonna, Mariah Carey, U2, Bruce Springsteen, Priyanka Chopra and Bette Midler.

High stakes

The group was also behind a ransomware attack on foreign currency seller Travelex on New Year’s Eve, 2019, that crippled the company’s services.

In recent months hacking groups such as REvil, which is believed to be based in Russia, have increasingly turned to targeted attacks on high-profile targets.

The groups’ malware locks their targets’ systems, rendering them useless without the payment of a  ransom.

In addition, ransomware groups have recently begun stealing customers’ data and threatening to release it to force companies to pay.

Law enforcement authorities discourage payment, saying it fuels criminals’ activities and doesn’t guarantee the systems will be restored.

Matthew Broersma

Matt Broersma is a long standing tech freelance, who has worked for Ziff-Davis, ZDnet and other leading publications

Recent Posts

Elon Musk’s X Suffers Multiple Outages

Nation-state cyberattack? Elon Musk blames outages on Monday at X (formerly Twitter) on “massive cyberattack”

16 hours ago

Apple Confirms AI Improvements to Siri Delayed To 2026

More time required for Apple to improved the AI capabilities of the Siri voice assistant,…

18 hours ago

Siemens Confirms $285m Manufacturing Investment In US

German conglomerate Siemens confirms $285 million investment for manufacturing facilities in Texas and California

19 hours ago

IBM Wins Lawsuit Against LzLabs Over Mainframe Patents

Court ruling. Big Blue lawsuit filed in London had alleged IP theft of mainframe technology…

21 hours ago

Trump Says US Talking With Four Groups Over TikTok Sale

But what about Beijing? Donald Trump says administration in talks with four different groups about…

23 hours ago