NHS England has been made aware that a cyber criminal group published data on 20 June which they are claiming belongs to Synnovis and was stolen as part of this attack.

Synnovis has now confirmed through an initial analysis that the data published by a cyber crime group has been stolen from some of their systems.

An initial analysis of the stolen data which was published found in some circumstances this information may contain personal data such as names, NHS numbers and test codes, although analysis is ongoing. The codes tell Synnovis the nature of the test that has been requested.

At present, Synnovis has confirmed there is no evidence the cyber criminals have published a copy of the database (Laboratory Information Management System) where patient test requests and results are stored, although their investigations are ongoing.

The National Crime Agency and National Cyber Security Centre are working to verify the data included in the published files as quickly as possible.

The final stages of recovery following the cyber attack on pathology services provider Synnovis in June are complete, which means nearly all services are now up and running. While some important administrative work remains, any further impact on patient care will be minimal.

NHS England continues to work with Synnovis and the National Crime Agency to respond to the criminal ransomware attack on Synnovis systems.

We understand people may be concerned by this, and Synnovis are working at pace to carry out the further analysis required to understand the full scale and nature of the data released and patients impacted.

As more detail becomes available through Synnovis’ full investigation, the NHS will continue to provide updates here and a helpline has been set up to support people impacted.

Investigations of this type are complex and can take time. Given the complexity of the investigation it may be some months  before it is clear which individuals have been impacted.

As more detail becomes available through Synnovis’ full investigation, the NHS will continue to provide updates.

View all the incident updates.

As more detail becomes available through Synnovis’ full investigation, the NHS will continue to provide updates on this web page.

Questions and answers