DXS International, a UK-based healthcare technology provider for England’s National Health Service (NHS), has confirmed it was hit by a cyberattack, according to a statement released on Thursday.
In a filing to the London Stock Exchange, the company said it identified a “security incident affecting its office servers” on December 14. DXS said it moved quickly to contain the breach in coordination with the NHS and brought in an external cybersecurity firm to investigate the “nature and scope of the incident.”
The company said the attack caused minimal disruption, adding that its services were largely unaffected and that frontline clinical operations continued to run as normal.
The exact details of the breach remain unclear, including whether any patient medical data was accessed or stolen. However, earlier this week a ransomware group known as DevMan claimed responsibility for the attack. In a post on its dark web site, seen by TechCrunch, the group said it listed DXS on December 14 and alleged it had exfiltrated around 300GB of company data.
DXS said it has reported the incident to law enforcement and relevant regulators, including the UK’s data protection watchdog, the Information Commissioner’s Office (ICO).
DXS chief operating officer Steven Bauer did not answer multiple questions from TechCrunch, instead providing a statement that reiterated the details already disclosed in the stock exchange filing. Separately, ICO spokesperson Rashana Sweidan Vigerstaff told TechCrunch that the regulator is reviewing the information submitted by DXS, but declined to comment further.
