Synnovis breach affected undisclosed number of NHS Trusts
Published: 08/06/2026
| BBC News
Mid and South Essex NHS Foundation Trust is the latest provider added to confirm that 2,380 patient test records were exfiltrated during the ransomware attack on pathology lab services provider Synnovis by Russian hacking group Qilin in June 2024.
The attack affected an undisclosed number of NHS organisations, including Bedfordshire Hospitals NHS Foundation Trust, which reported that 32,927 patients were affected by the breach.
Synnovis has said that the data was stolen in a random manner, and there is no evidence of malicious use.
Training announcement: Freevacy provides comprehensive training for new and existing practitioners on the changes introduced by the DUA Act to the UK General Data Protection Regulation (GDPR), the Data Protection Act 2018 (DPA18), and the Privacy and Electronic Communications Regulations 2003 (PEC-Regulations). Our courses are always up to date and provide a forum for learning and discussing how to ensure your data protection processes remain compliant. Find out more.
Image credit on Nigel J. Harris Shutterstock
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 3,250 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.