Ransomware Gang Targets NHS Children’s Hospital - 1

Image by Mpho Mojapelo, from Unsplash

Ransomware Gang Targets NHS Children’s Hospital

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Sarah Frazier Former Content Manager

Ransomware gang INC Ransom claims Alder Hey breach, exposing patient data; hospital assures services unaffected, works with NCA investigation.

In a Rush? Here are the Quick Facts!

  • INC Ransom claims responsibility for Alder Hey Children’s Hospital and Liverpool Heart data breach.
  • Allegedly stolen data includes patient records, donor information, and financial documents since 2018.
  • Alder Hey is among Europe’s largest children’s hospitals and a leader in pediatric care.

A ransomware group has claimed responsibility for a data breach involving Alder Hey Children’s Hospital in Liverpool and the Liverpool Heart and Chest Hospital NHS Foundation Trust, as reported by The Register .

The incident marks the second alleged intrusion on NHS systems in England this week, following a cyberattack on the nearby Wirral University Teaching Hospital NHS Trust, noted The Register.

The two incidents are reportedly unrelated, though their geographic proximity has raised concerns. INC Ransom, a group known for a similar attack on NHS Scotland earlier this year, claims to have stolen sensitive data from Alder Hey and Liverpool Heart and Chest, says The Register.

The stolen information allegedly includes patient names, addresses, medical records, donor information, and financial documents, with records dating back to 2018. The group has reportedly shared samples of the data online to pressure the hospitals into meeting its demands, says The Register.

The escalating threat aligns with warnings from the World Health Organization (WHO), which recently described ransomware as a “life-or-death crisis” for healthcare systems .

In a Security Council meeting, WHO Director-General Tedros Adhanom Ghebreyesus emphasized that such attacks cripple hospital functionality, endanger lives, and cost billions annually.

In a statement, Alder Hey confirmed it is aware of data being shared online and is working with the National Crime Agency (NCA) and other partners to verify its authenticity.

“We are taking this issue very seriously,” the hospital said , adding that its systems are being secured in line with law enforcement advice.

This incident comes amid an ongoing cyberattack on the Wirral NHS Trust, believed to be perpetrated by a rival group, RansomHub. While the Wirral attack has caused significant disruption, Alder Hey has assured the public that its operations remain stable, as reported by The Register.

Ransomware attacks on NHS organizations are not uncommon, but two incidents in the same region within a week are unusual, noted The Register.

Alder Hey, one of Europe’s largest and most prominent children’s hospitals, is a leader in medical research and pediatric care, making it a high-profile target.

The NCA has yet to comment on the investigation, and Alder Hey has urged patients and donors to remain vigilant as authorities work to assess the full impact of the breach.

Fintech Wise Agrees to Fix Money Laundering Controls After EU Orders - 2

Photo by appshunter.io on Unsplash

Fintech Wise Agrees to Fix Money Laundering Controls After EU Orders

  • Written by Andrea Miliani Former Tech News Expert

European regulators forced the British company Wise to fix anti-money laundering measures after the Belgian National Bank discovered the fintech lacked relevant information about its customers.

In a Rush? Here are the Quick Facts!

  • FT revealed that Wise was forced by European regulators to fix anti-money laundering measures
  • The National Bank of Belgium reviewed the company in 2022 and revealed that hundreds of thousands of customers didn’t provide proof of residence
  • Wise worked on a remediations plan approved by the regulator and said they have fully implemented the recommendations

The story was revealed by the Financial Times today. Five anonymous sources shared more details of the remediation plan.

People familiar with the matter explained that Wise failed to collect proof of address of hundreds of thousands of users and this was noticed by the Belgian National Bank and reported in 2022.

Wise worked on a remediation plan, approved by the Belgian financial institution, requested users’ proof of address, and froze the accounts of those who didn’t comply with the safety requirements. Within days the fintech had to reorganize its staff to prioritize its anti-financial crime department.

“In 2021, the National Bank of Belgium carried out a routine review of Wise Europe as part of a market-wide exercise in the wake of Brexit,” explained the company to FT in an email. “We worked closely with our regulator in Belgium and have fully implemented their recommendations.”

FT’s report highlights how fast-growing companies can have difficulties dealing with their development and keeping a safe platform.

Multiple fintech companies have grown fast and faced challenges along the way. Earlier year, the American company Synapse froze over 100,000 accounts after declaring bankruptcy, and the U.S. senators urged the fintech to give people their money back.

Other companies have seen more positive outcomes. Revolut, one of Wise’s competitors, recently got a banking license in the United Kingdom.