DXS International, a U.K.-based company that provides healthcare tech for England\u2019s National Health Service (NHS), disclosed a cyberattack in a statement on Thursday.<\/p>\n
In a filing<\/a> with the London Stock Exchange, the company said it experienced a \u201ca security incident affecting its office servers,\u201d discovered on December 14. The company said it \u201cimmediately\u201d contained the breach working together with the NHS, and hired a cybersecurity firm to investigate \u201cthe nature and extent of the incident.\u201d<\/p>\n \u201cThere was minimal impact on the company\u2019s services and the company\u2019s front-line clinical services remain unaffected and operational,\u201d read the filing.<\/p>\n At this point, the specific nature of the breach is not known, nor whether any patients\u2019 medical information was stolen.\u00a0<\/p>\n However, earlier this week, a ransomware group called DevMan took credit for the breach. In a post on its dark web site, which TechCrunch has seen, the hackers listed the company on December 14 and claimed to have stolen 300 gigabytes of data from the company.<\/p>\n DXS said it also notified law enforcement and regulators, including the UK\u2019s data protection authority, the Information Commissioner\u2019s Office, or ICO, about the cyberattack.<\/p>\n \t\t\tContact Us DXS chief operating officer Steven Bauer did not respond to a series of questions. Instead, Bauer sent TechCrunch a statement echoing the public filing.\u00a0<\/p>\n Rashana Sweidan Vigerstaff, a spokesperson for the ICO, told TechCrunch that the ICO is assessing the information provided by DXS, while also not responding to several questions.\u00a0\u00a0\u00a0<\/p>\n NHS England spokesperson Katie Baldwin told TechCrunch that the health service is \u201cnot aware of any patient services being impacted.\u201d<\/p>\n On its website<\/a>, DXS says it provides software that helps to reduce costs for doctors and primary care physicians. As such, the company\u2019s software touches patient records and data. The company also says that in some cases, its solutions are hosted on the NHS\u2019 Health and Social Care Network (HSCN<\/a>), which is a system for healthcare organizations across the U.K. to access and share information.\u00a0<\/p>\n Generally speaking, the NHS does not store patient\u2019s medical data in a centralized system.<\/p>\n Updated with responses from DXS and the ICO.<\/p>\n","protected":false},"excerpt":{"rendered":"DXS International, a U.K.-based company that provides healthcare tech for England\u2019s National Health Service (NHS), disclosed a cyberattack…\n","protected":false},"author":2,"featured_media":640765,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4316],"tags":[3457,55682,197154,11579,15986,105,4348,36030,197155,211,16,15],"class_list":{"0":"post-640764","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-healthcare","8":"tag-cybersecurity","9":"tag-data-breach","10":"tag-dxs-international","11":"tag-hackers","12":"tag-hacking","13":"tag-health","14":"tag-healthcare","15":"tag-information-security","16":"tag-infosec","17":"tag-nhs","18":"tag-uk","19":"tag-united-kingdom"},"share_on_mastodon":{"url":"https:\/\/pubeurope.com\/@uk\/115742068318457852","error":""},"_links":{"self":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts\/640764","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/comments?post=640764"}],"version-history":[{"count":0,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/posts\/640764\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/media\/640765"}],"wp:attachment":[{"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/media?parent=640764"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/categories?post=640764"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.europesays.com\/uk\/wp-json\/wp\/v2\/tags?post=640764"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\n\t\t\tDo you have more information about the breach at DXS International? From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email<\/a>.<\/a>\t\t<\/p>\n