DXS International Cyber-Attack Confirmed, Minimal Impact on NHS Services

First reported

22.12.2025 13:15

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

DXS International, a UK-based tech supplier to the NHS, confirmed a cyber-attack on December 14, 2025, affecting its office servers. The attack had minimal impact on services, and front-line clinical services remained operational. A threat actor named Devman claimed to have stolen 300GB of data and threatened to release it on December 20, though this has not been confirmed by DXS or the NHS. DXS immediately contained the incident and initiated an investigation with NHS England and an external cybersecurity specialist agency. The company also notified the ICO and various NHS bodies.

Timeline

22.12.2025 13:15 1 articles · 23h ago

DXS International Confirms Cyber-Attack with Minimal Impact on NHS Services
On December 14, 2025, DXS International confirmed a cyber-attack affecting its office servers. The attack had minimal impact on services, and front-line clinical services remained operational. The company does not anticipate an adverse financial impact. A threat actor named Devman claimed to have stolen 300GB of data and threatened to release it on December 20, though this has not been confirmed. DXS immediately contained the incident and initiated an investigation with NHS England and an external cybersecurity specialist agency.
Show sources

UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected — www.infosecurity-magazine.com — 22.12.2025 13:15
Open in new tab

Information Snippets

DXS International confirmed a cyber-attack on December 14, 2025, affecting its office servers.
First reported: 22.12.2025 13:15

1 source, 1 article
Show sources
- UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected — www.infosecurity-magazine.com — 22.12.2025 13:15
The attack had minimal impact on DXS's services, and front-line clinical services remained unaffected.
First reported: 22.12.2025 13:15

1 source, 1 article
Show sources
- UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected — www.infosecurity-magazine.com — 22.12.2025 13:15
DXS does not anticipate an adverse financial impact from the incident.
First reported: 22.12.2025 13:15

1 source, 1 article
Show sources
- UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected — www.infosecurity-magazine.com — 22.12.2025 13:15
DXS immediately contained the incident and initiated an investigation with NHS England and an external cybersecurity specialist agency.
First reported: 22.12.2025 13:15

1 source, 1 article
Show sources
- UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected — www.infosecurity-magazine.com — 22.12.2025 13:15
The threat actor Devman claimed to have stolen 300GB of data and threatened to release it on December 20, though this has not been confirmed.
First reported: 22.12.2025 13:15

1 source, 1 article
Show sources
- UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected — www.infosecurity-magazine.com — 22.12.2025 13:15

Summary

Timeline

DXS International Confirms Cyber-Attack with Minimal Impact on NHS Services

Information Snippets