NHS IT Provider Faces £6M Fine Over 2022 Ransomware Attack
Advanced Computer Software Group provisionally fined for failing to secure sensitive data of nearly 83,000 individuals, including medical records and home access details.
- The Information Commissioner's Office (ICO) provisionally fined Advanced £6.09 million for data protection failures.
- Hackers accessed systems via a customer account lacking multi-factor authentication, leading to widespread service disruptions.
- Sensitive data stolen included medical records and instructions on accessing homes of 890 care recipients.
- The attack impacted NHS services such as NHS 111 and forced some to revert to pen-and-paper operations.
- Advanced has committed to improving cybersecurity measures and cooperating with the ICO's ongoing investigation.
Open Access Government 
BleepingComputer 
The Register 
The Guardian 
BBC 
TechCrunch 
The Independent 
Sky News 