DXS International: NHS England tech provider reveals data breach

NHS Tech Supplier DXS International Hit by Ransomware Attack

DXS International, a key technology supplier for the NHS in England, disclosed a ransomware attack on December 14, 2023, after detecting a security incident affecting its office servers. The company engaged third-party cybersecurity experts to investigate and confirmed minimal disruption to its services, with front-line clinical operations remaining unaffected.

While DXS did not initially disclose details about the attack or data theft, an unknown ransomware group called DevMan later claimed responsibility. According to TechCrunch, the group posted on its dark web site on the same day, alleging the theft of 300GB of company data. The absence of leaked files suggests a possible extortion attempt.

This incident follows a 2022 ransomware attack on NHS supplier Advanced Computer Group, which caused significant disruptions, including outages to NHS 111 services and restricted access to patient records. The breach exposed sensitive data, including medical records and home care access details for 890 individuals. In March 2025, the UK Information Commissioner’s Office (ICO) fined the company £3.07 million for the breach, which affected 79,404 people.

Source: https://www.techradar.com/pro/security/nhs-england-tech-provider-reveals-data-breach-dxs-international-hit-by-ransomware

DXS cybersecurity rating report: https://www.rankiteo.com/company/dxssystems

"id": "DXS1766412041",
"linkid": "dxssystems",
"type": "Ransomware",
"date": "12/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'customers_affected': 'NHS (National Health Service)',
                        'industry': 'Healthcare Technology',
                        'location': 'England',
                        'name': 'DXS International',
                        'type': 'Technology Supplier'}],
 'data_breach': {'data_exfiltration': '300GB of data allegedly stolen'},
 'date_detected': '2023-12-14',
 'description': 'DXS International, a key technology supplier for the NHS in '
                'England, suffered a ransomware attack by an unknown threat '
                'actor. The attack was claimed by the ransomware group DevMan, '
                'which alleges theft of 300GB of company data. The incident '
                'had minimal impact on clinical services.',
 'impact': {'data_compromised': '300GB of data allegedly stolen',
            'operational_impact': 'Minimal impact on clinical services',
            'systems_affected': 'Office servers'},
 'investigation_status': 'Ongoing',
 'motivation': 'Extortion',
 'ransomware': {'data_exfiltration': '300GB of data allegedly stolen'},
 'references': [{'source': 'TechCrunch'},
                {'source': 'London Stock Exchange'},
                {'source': 'TechRadar'}],
 'regulatory_compliance': {'regulatory_notifications': 'Relevant authorities '
                                                       'notified'},
 'response': {'law_enforcement_notified': 'Relevant authorities',
              'remediation_measures': 'Incident remedied',
              'third_party_assistance': 'Cybersecurity specialists'},
 'threat_actor': 'DevMan',
 'title': 'DXS International Ransomware Attack',
 'type': 'Ransomware'}

DXS International: NHS England tech provider reveals data breach - DXS International hit by ransomware

OCHIN Inc. and Baltimore City Health Department: Baltimore City Health Department investigating data breach involving third-party system

Microsoft: Malicious AI extensions on VSCode Marketplace steal developer data

NETSCOUT: Smarter DDoS security at scale