ICO plans £6m fine for NHS software provider Advanced over 2022 cyberattack


The UK’s data protection regulator has announced that its investigation into tech firm ‘provisionally found serious failings in its approach to information security’ before incident that compromised 83,000 people’s data

The Information Commissioner’s Office has made a provisional decision to issue a £6.1m fine to Advanced Computer Software over a 2022 cyberattack that caused months of disruption to NHS bodies.

The ransomware assault affected the Birmingham-headquartered firm’s products including Adastra, a patient-management platform used to support the urgent-care treatment of up to 40 million people, and the Carenotes electronic patient records system used by 40,000 doctors. Advanced’s technology also supports the delivery of the vast majority of enquiries to the NHS 111 service for urgent care issues which, according to the ICO, also faced disruption following the incident.

Six months after the incident, ministers revealed that some NHS organisations had still not reconnected to impacted systems. Now, 18 months on from that, the data-protection watchdog has identified “serious failings” it claims were present in Advanced’s cybersecurity set-up before the attackers struck.

Hackers stole personal data related to 82,946 people, including information such as contact details and medical records and, in the case of 890 people receiving care at home, instructions on gaining entry to their residence.

“People impacted have been notified, and Advanced found no evidence that any data was published on the dark web,” the ICO added.

Nevertheless, the watchdog’s investigation found Advanced “failed to implement measures to protect the personal information” that was compromised during the incident.  Hackers were able to gain access to the software firm’s system using a customer account that was not protected with multi-factor authentication, according to the ICO.

The information commissioner John Edwards said that he had decided to publicly announce the provisional penalty issued to the software provider “as it is my duty to ensure other organisations have information that can help them to secure their systems and avoid similar incidents in the future”.


Related content


“Despite already installing measures on its corporate systems, our provisional finding is that Advanced failed to keep its healthcare systems secure,” he added. “We expect all organisations to take fundamental steps to secure their systems, such as regularly checking for vulnerabilities, implementing multi-factor authentication and keeping systems up to date with the latest security patches.”

The decision to issue such a hefty penalty is only provisional at this stage, and the ICO said that it may reduce the size of the fine – or eliminate it entirely, if it later finds that there has not been any breach of data-protection law. In the coming days, Edwards “will carefully consider any representations Advanced makes before making a final decision”.

The commissioner said: “This incident shows just how important it is to prioritise information security. Losing control of sensitive personal information will have been distressing for people who had no choice but to put their trust in health and care organisations. Not only was personal information compromised, but we have also seen reports that this incident caused disruption to some health services, disrupting their ability to deliver patient care. A sector already under pressure was put under further strain due to this incident. For an organisation trusted to handle a significant volume of sensitive and special category data, we have provisionally found serious failings in its approach to information security prior to this incident.”

Advanced response
Responding to the ICO’s provisional decision, a spokesperson for Advanced said that, after detecting the attack in August 2022, the firm “promptly isolated certain systems leading to a temporary loss of service for some customers”.

“Following our robust investigation we ascertained that 16 customers had data that was exfiltrated, out of more than 550 customers using these systems at the time,” the spokesperson add. “These 16 customers were notified about the impact to their data which related to 82,946 data subjects in total.”

The software firm said that it has worked to provide support to its customers throughout the incident “and can confirm that no data was ever made available publicly”.

“Patient data controlled by NHS Trusts was not impacted and our ongoing monitoring confirms that there is no evidence of fraud or misuse,” the spokesperson said.

Following the attack, Advanced claims to have taken steps “to transform our business and [we] are a more secure and resilient company than we were two years ago”.

The company said that it has “cooperated fully with the ICO investigation over the past two years and will respond to their provisional findings, detailing a comprehensive response ahead of a final decision being made”.

 The spokesperson added: “We apologise to our customers. It is wholly regrettable that threat actors disrupted our services in this incident. We value our customers in the healthcare sector and take our responsibility to them and their patients and communities very seriously. Cybersecurity continues to be a primary investment throughout our business, we continue to adapt and evolve our response to the ever-changing cybersecurity threats and challenges.”

Sam Trendall

Learn More →

46 thoughts on “ICO plans £6m fine for NHS software provider Advanced over 2022 cyberattack

  1. 송파콜걸출장섹스마사지 November 21, 2024 at 3:40 pm

    https://madreviewer.tistory.com/tag/인천20수돗물20필터

  2. 동대문콜걸출장섹스마사지 November 22, 2024 at 6:32 am

    https://k-studio.kr/화영운수-차량현황-및-버스-차고지/

  3. 목포콜걸출장섹스마사지 November 24, 2024 at 11:17 pm

    벼룩시장 신문그대로보기 (구인구직, 부동산) 벼룩시장 신문그대로보기 바로가기 그리고 지역별 벼룩시장 종이신문그대로보기 방법 (구인구직, 부동산) 알아볼게요. 교차로신문 같이 벼룩시장은 지역별 일자리, 구인구직, 부동산 등 다양한 정보를 제공해요. 교차로신문그대로보기 바로가기는 아래에서 확인하고, 오늘은 벼룩시장 신문그대로보기 바로가기 그리고 사용법 섹스카지노사이트

  4. 송도콜걸출장섹스마사지 November 25, 2024 at 11:31 am

    벼룩시장 신문그대로보기 (구인구직, 부동산) 벼룩시장 신문그대로보기 바로가기 그리고 지역별 벼룩시장 종이신문그대로보기 방법 (구인구직, 부동산) 알아볼게요. 교차로신문 같이 벼룩시장은 지역별 일자리, 구인구직, 부동산 등 다양한 정보를 제공해요. 교차로신문그대로보기 바로가기는 아래에서 확인하고, 오늘은 벼룩시장 신문그대로보기 바로가기 그리고 사용법 섹스카지노사이트

  5. 송도콜걸출장섹스마사지 November 25, 2024 at 11:37 am

    벼룩시장 신문그대로보기 (구인구직, 부동산) 벼룩시장 신문그대로보기 바로가기 그리고 지역별 벼룩시장 종이신문그대로보기 방법 (구인구직, 부동산) 알아볼게요. 교차로신문 같이 벼룩시장은 지역별 일자리, 구인구직, 부동산 등 다양한 정보를 제공해요. 교차로신문그대로보기 바로가기는 아래에서 확인하고, 오늘은 벼룩시장 신문그대로보기 바로가기 그리고 사용법 섹스카지노사이트

  6. 송도콜걸출장섹스마사지 November 25, 2024 at 1:09 pm

    벼룩시장 신문그대로보기 (구인구직, 부동산) 벼룩시장 신문그대로보기 바로가기 그리고 지역별 벼룩시장 종이신문그대로보기 방법 (구인구직, 부동산) 알아볼게요. 교차로신문 같이 벼룩시장은 지역별 일자리, 구인구직, 부동산 등 다양한 정보를 제공해요. 교차로신문그대로보기 바로가기는 아래에서 확인하고, 오늘은 벼룩시장 신문그대로보기 바로가기 그리고 사용법 섹스카지노사이트

  7. 송도콜걸출장섹스마사지 November 25, 2024 at 1:26 pm

    벼룩시장 신문그대로보기 (구인구직, 부동산) 벼룩시장 신문그대로보기 바로가기 그리고 지역별 벼룩시장 종이신문그대로보기 방법 (구인구직, 부동산) 알아볼게요. 교차로신문 같이 벼룩시장은 지역별 일자리, 구인구직, 부동산 등 다양한 정보를 제공해요. 교차로신문그대로보기 바로가기는 아래에서 확인하고, 오늘은 벼룩시장 신문그대로보기 바로가기 그리고 사용법 섹스카지노사이트

  8. 송도콜걸출장섹스마사지 November 25, 2024 at 1:58 pm

    벼룩시장 신문그대로보기 (구인구직, 부동산) 벼룩시장 신문그대로보기 바로가기 그리고 지역별 벼룩시장 종이신문그대로보기 방법 (구인구직, 부동산) 알아볼게요. 교차로신문 같이 벼룩시장은 지역별 일자리, 구인구직, 부동산 등 다양한 정보를 제공해요. 교차로신문그대로보기 바로가기는 아래에서 확인하고, 오늘은 벼룩시장 신문그대로보기 바로가기 그리고 사용법 섹스카지노사이트

  9. 춘천콜걸출장섹스마사지 November 26, 2024 at 7:52 pm

    수원출장샵

  10. 춘천콜걸출장섹스마사지 November 26, 2024 at 10:04 pm

    강남콜걸

  11. 춘천콜걸출장섹스마사지 November 26, 2024 at 11:20 pm

    강남콜걸

  12. 강남출장섹스마사지 November 27, 2024 at 4:34 pm

    수원출장샵

  13. 강남출장섹스마사지 November 27, 2024 at 6:53 pm

    아름다운스웨디시업소

  14. 강남출장섹스마사지 November 27, 2024 at 8:11 pm

    대전나이트클럽

  15. 춘천콜걸출장섹스마사지 November 28, 2024 at 12:52 am

    https://klero.tistory.com/tag/V320무료백신20다운로드

  16. 춘천콜걸출장섹스마사지 November 28, 2024 at 1:46 am

    https://klero.tistory.com/tag/Chrome20설치파일20오프다인20다운로드

  17. 춘천콜걸출장섹스마사지 November 28, 2024 at 4:10 am

    https://klero.tistory.com/tag/카톡20생일20뜨게20하는20방법

  18. 춘천콜걸출장섹스마사지 November 28, 2024 at 5:29 am

    https://klero.tistory.com/tag/구글북마크동기화

  19. 전주콜걸출장섹스마사지 November 28, 2024 at 5:49 pm

    안성출장마사지

  20. 전주콜걸출장섹스마사지 November 28, 2024 at 9:24 pm

    이태원게이바

  21. 춘천콜걸출장섹스마사지 November 28, 2024 at 11:38 pm

    영등포안마살롱

  22. 춘천콜걸출장섹스마사지 November 29, 2024 at 12:32 am

    충무로출장업소

  23. 춘천콜걸출장섹스마사지 November 29, 2024 at 4:11 am

    거제출장안마

  24. Makeup November 30, 2024 at 1:24 pm

    Oh my goodness! an incredible article dude. Thank you Nevertheless I am experiencing challenge with ur rss . Don抰 know why Unable to subscribe to it. Is there anyone getting similar rss downside? Anyone who is aware of kindly respond. Thnkx

  25. 송도출장섹스마사지 December 1, 2024 at 2:35 am

    https://www.pornhub.com/view_video.php?viewkey=ph5e7df37a9faf5

  26. 송도출장섹스마사지 December 1, 2024 at 3:27 am

    https://pornmaster.fun/hd/letsdoeit-german-amateur-te

  27. 송도출장섹스마사지 December 1, 2024 at 7:04 am

    https://pornmaster.fun/hd/双融-升级版维护(kxys-vip电报:@kxkjww)-ren

  28. 청송콜걸출장섹스마사지 December 1, 2024 at 5:49 pm

    https://pornmaster.fun/hd/sex-mp3-videox-choot-real-mom-s

  29. 청송콜걸출장섹스마사지 December 1, 2024 at 8:06 pm

    https://pornmaster.fun/hd/mauritius-twerk

  30. 청송콜걸출장섹스마사지 December 1, 2024 at 9:23 pm

    https://pornmaster.fun/hd/mathira-naked-pics

  31. 안동콜걸출장섹스마사지 December 2, 2024 at 2:54 pm

    https://pornmaster.fun/hd/letsdoeit-german-amateur-te

  32. 강릉콜걸출장섹스마사지 December 2, 2024 at 11:48 pm

    https://pws1999.tistory.com/51

  33. 강릉콜걸출장섹스마사지 December 3, 2024 at 12:40 am

    https://pws1999.tistory.com/232

  34. 강릉콜걸출장섹스마사지 December 3, 2024 at 4:16 am

    https://pws1999.tistory.com/234

  35. 통도사출장섹스마사지 December 3, 2024 at 3:42 pm

    https://mrdeeply.tistory.com/121

  36. 통도사출장섹스마사지 December 3, 2024 at 4:30 pm

    https://mrdeeply.tistory.com/104

  37. 통도사출장섹스마사지 December 3, 2024 at 6:44 pm

    https://mrdeeply.tistory.com/491

  38. 통도사콜걸출장섹스마사지 December 3, 2024 at 11:38 pm

    청도페이스라인출장

  39. 통도사콜걸출장섹스마사지 December 4, 2024 at 12:30 am

    아름다운스웨디시업소

  40. 통도사콜걸출장섹스마사지 December 4, 2024 at 3:12 am

    하동동해출장만남 소자본 창업

  41. 통도사콜걸출장섹스마사지 December 4, 2024 at 4:42 am

    청도페이스라인출장

  42. 강남출장섹스마사지 December 4, 2024 at 4:17 pm

    https://itlearn.kr/파워포인트-무료설치-다운로드-방법/

  43. 강남출장섹스마사지 December 4, 2024 at 6:29 pm

    https://itlearn.kr/파워포인트-무료설치-다운로드-방법/

  44. 강남출장섹스마사지 December 4, 2024 at 7:45 pm

    https://itlearn.kr/

Leave a Reply

Your email address will not be published. Required fields are marked *