Cybercriminals are claiming to have accessed three terabytes of NHS patient and staff data and are threatening to release it unless their demands are met.
The hackers posted “a smaller number” of patients’ personal letters and medical reports online to prove that they had successfully breached security at NHS Dumfries & Galloway.
The INC ransomware group posted a “proof pack” on its website on the dark web on Tuesday alongside a claim that it had infiltrated the health board’s systems. It did not specify a deadline for a ransom payment to be provided.
The proof pack featured a variety of sensitive documents including letters between doctors discussing patient treatments and psychological reports. They included names and addresses of patients.
INC Ransom is an elusive group