Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Synnovis affected patients data leak

Data Leak
First reported
Last updated
Happening score
H score 18
2 unique sources, 2 articles

Summary

Hide ▲

Synnovis has begun notifying organizations after confirming that stolen patient data from its June 2024 ransomware attack included NHS numbers, names, dates of birth, and some test results. The exposure affects patients whose records could be matched to them and creates privacy and identity-risk concerns. The notification process is expected to conclude by 21 November 2025.

Related Happenings

INC New Zealand healthcare data leak

Data Leak
First: 12.03.2026 00:00 Last: 12.03.2026 00:00 Sources 1

About this happening: **INC** stole and later published data from a **healthcare organization in New Zealand**, exposing a large amount of information and escalating the event from intrusion to leak pu...

Open Happening

Covenant Health patient data breach disclosure expands to 478,188 affected

Data Leak
First: 02.01.2026 21:00 Last: 02.01.2026 21:00 Sources 1

About this happening: **Covenant Health** revised its breach impact estimate to **478,188 people** after completing most of its analysis of a **May 2025** intrusion. The exposed records may include **n...

Open Happening

Timeline

  1. 12.11.2025 14:28 1 articles · 6mo ago

    Ransomware attack disrupts London NHS hospitals

    Exploitation Observed

    Synnovis was hit by a ransomware attack that caused major impact on procedures and operations at King's College Hospital, Guy's Hospital, St Thomas' Hospital, Royal Brompton Hospital, and Evelina London Children's Hospital. Non-emergency pathology appointments and blood transfusions were canceled, postponed, or redirected, and the disruption contributed to blood shortages in London and the cancellation of more than 800 planned operations and 700 outpatient appointments.

    Show sources
    Open in new tab
  2. 12.11.2025 14:28 1 articles · 6mo ago

    Stolen Synnovis data released and ICO notified

    Victim Impact Update

    Attackers released data allegedly stolen from Synnovis systems, and the company notified the Information Commissioner's Office and secured a legal injunction against further use. The stolen material included patients' NHS numbers, names, dates of birth, and, in some cases, test results that could be matched to individuals.

    Show sources
    Open in new tab
  3. 12.11.2025 14:28 2 articles · 6mo ago

    Synnovis begins organization notifications

    Initial Disclosure

    Synnovis began notifying affected organizations, including NHS hospitals and clinics, that patient data had been stolen and said it expects to finish the notification process by 21 November 2025. The company will not contact patients directly, because impacted NHS organizations will handle patient notifications under UK data protection law.

    Show sources
    Open in new tab