DXS International, a primary technology provider for NHS England, confirmed a significant cyberattack on Thursday. The breach, which occurred on December 14, has prompted an urgent investigation into the potential exposure of sensitive medical data.
Security Breach at DXS International
In an official filing with the London Stock Exchange, DXS International reported a security incident impacting its office servers. The company claims it moved to contain the breach immediately in coordination with the NHS and has engaged an external cybersecurity firm to assess the full scope of the intrusion.
Despite the incident, the company asserts that its front-line clinical services remain operational with minimal impact on service delivery. However, the exact nature of the compromised data remains under investigation.
Ransomware Group Claims 300GB Data Theft
While the company investigates, the ransomware syndicate known as “DevMan” has claimed responsibility for the attack. The group listed DXS on its dark web portal on December 14, alleging the theft of 300 gigabytes of corporate and patient-related data.
DXS has formally notified law enforcement agencies and the UK’s Information Commissioner’s Office (ICO) regarding the incident. A spokesperson for the ICO confirmed that they are currently reviewing the information provided by the tech firm.
Impact on NHS Patient Records
DXS provides essential software designed to assist doctors and primary care physicians in managing costs and clinical workflows. Because these tools often interact with patient records, the potential for data exposure is a primary concern.
The company’s solutions are occasionally hosted on the Health and Social Care Network (HSCN), a critical infrastructure system for sharing information across UK healthcare organizations. Despite these connections, an NHS England spokesperson stated that the health service is currently unaware of any patient services being disrupted by the breach.
For further information on the company’s role in the healthcare sector, visit the official DXS website.