NHS board warns of further data release risk
NHS Dumfries and Galloway have warned patients that more personal information stolen by cybercriminals could be leaked.
A cyber-attack resulted in a large amount of confidential data being taken from the health board last month.
Last week, the extortionists INC Ransom posted a message on a dark web blog where they threatened to release three terabytes of stolen data and published a ‘proof pack’ of confidential patient information.
This allegedly includes hospital reports, emails, clinical reports, and document scans.
NHS Dumfries and Galloway has warned that more details could be published following the “targeted and sustained” attack.
Although it confirmed in a statement last month that its systems were running normally again, the board’s chief executive Julie White urged people to remain on their guard after admitting there is a “risk of publication for further data”.
White said: “We all must remain highly vigilant in the wake of what was a targeted and sustained cyber-attack, and we are aware there is a risk of publication of further data.
"Everyone is advised to be alert for any attempts to access their data, or for approaches by anyone claiming to be in possession of either their personal data or NHS data – whether this approach comes by email, telephone, social media or some other means," she said.
"In all instances, people are advised to take down details about the approach and contact Police Scotland by phoning 101."
Police Scotland have said enquiries into the incident are ongoing.
Holyrood Newsletters
Holyrood provides comprehensive coverage of Scottish politics, offering award-winning reporting and analysis: Subscribe