GCHQ is looking into a cyberattack that targeted the Royal family's preferred private hospital in London.
The National Cyber Security Centre (NCSC) of the intelligence agency is looking into what King Edward VII Hospital described as an IT security issue in which private medical records, including letters from doctors and pathology reports about specific patients, were obtained by a third party.
The third party responsible for the attack on King Edward VII's Hospital systems could not be identified.
To further protect them from possibly fraudulent activities, affected patients have been offered free identity and credit monitoring.
TPRM report: https://scoringcyber.rankiteo.com/company/king-edward-vii's-hospital-sister-agnes
"id": "kin21145224",
"linkid": "king-edward-vii's-hospital-sister-agnes",
"type": "Data Leak",
"date": "11/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'London',
'name': "King Edward VII's Hospital",
'type': 'Private Hospital'}],
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Private medical records',
"Doctor's letters",
'Pathology reports']},
'description': "A cyberattack targeted King Edward VII's Hospital in London, "
'resulting in the compromise of private medical records '
"including doctor's letters and pathology reports.",
'impact': {'data_compromised': ['Private medical records',
"Doctor's letters",
'Pathology reports'],
'identity_theft_risk': 'High'},
'investigation_status': 'Ongoing by NCSC',
'response': {'communication_strategy': 'Offered free identity and credit '
'monitoring to affected patients'},
'threat_actor': 'Unknown',
'title': "Cyberattack on Royal Family's Preferred Private Hospital",
'type': 'Cyberattack'}