News: 1726054669

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

'IT failure' hits blood tests as another critical incident declared by NHS

(2024/09/11)


The UK's National Health Service's (NHS) capability to deliver pathology services is taking another beating, with a critical incident declared this morning at two hospitals in England.

Unlike the issues still affecting London hospitals, the incident at Nottingham University Hospitals NHS Trust (NUH) was not believed to be caused by a cyberattack, but rather by a nondescript "IT failure."

City Hospital and Queen's Medical Centre, both located outside central Nottingham, were each struggling to deliver services, with all phlebotomy patients who are due to get blood drawn and tested at these sites being asked not to attend until further notice.

[1]

"People should continue to attend other scheduled appointments unless informed otherwise," a notice on its website read.

[2]

[3]

"There will continue to be delays in the service while we work on a solution. This impacts blood tests from within the Trust and from GP colleagues. Business continuity plans are in place and we are working to prioritize the most urgent blood tests, including cancer and pre-op services."

Moments before publication, the Nottingham NHS trust told The Register that the "critical incident" designation related to "IT issues in our Pathology service" had now been "stood down."

[4]

It said the affected systems were "returning to normal ... and we are now operating in business as usual. Patients can now attend the phlebotomy (blood testing) service at City Hospital and the QMC, including the Treatment Centre, for regular tests. GP colleagues are being advised to return to business as usual in testing from 2pm (BST) this afternoon"

It added: "We would like to thank all of our colleagues, patients and our partner agencies for your support and dedication in responding to this incident and protecting patient care."

The Register asked NUH for additional information about the incident, including details about what system or systems were affected, whether patient data is deemed secure, and what remediation efforts were made, but it did not respond to these questions.

Cancer patient forced to make terrible decision after Qilin attack on London hospitals [5]READ MORE

Beyond pathology services, patients earlier today were advised to make use of the NHS's non-emergency 111 helpline to relieve pressure on emergency services, and visit A&E departments only when absolutely necessary.

The incident comes months after the attack on Synnovis, a pathology services provider to Guy's and St Thomas', King's College Hospital NHS Foundation Trusts, and primary care services in southeast London.

[6]

However, this was a much nastier incident. A [7]Qilin ransomware attack catalyzed months of widespread disruption, and led to some [8]tragic consequences of being unable to fully deliver health services.

Per the NHS's most recent update on the matter, after 13 weeks of disruption which is still causing appointments and procedures to be canceled, a total of 10,129 acute outpatient appointments and 1,702 elective procedures have been postponed across the two London-based NHS trusts since the attack.

[9]The fingerpointing starts as cyber incident at London transport body continues

[10]Qilin: We knew our Synnovis attack would cause a healthcare crisis at London hospitals

[11]Qilin cyber scum leak data they claim belongs to London hospitals’ pathology provider

[12]London hospitals left in critical condition after ransomware attack

The NHS is also continuing its call for O-type blood donations. Appeals for more blood started weeks ago, days after the attack, with demand for supplies increasing amid a backdrop of decreasing donations and the attack itself.

Elsewhere in the UK, London's transportation authority, Transport for London (TfL), [13]continues to reel from a "cybersecurity incident." Its incident status page is being updated daily, with eagle-eyed watchers spotting on Tuesday that it removed the reference to there being "no evidence that any customer data has been compromised."

Tewkesbury Borough Council is also still working to bring its systems back online following its "cyber incident" a week ago. Its most recent update shared by chief exec Alistair Cunningham suggested that no resident data had been affected. ®

Get our [14]Tech Resources



[1] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_onprem/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2ZuG-pJ9tE5Fpir5r-4bmYgAAAAM&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0

[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_onprem/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZuG-pJ9tE5Fpir5r-4bmYgAAAAM&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_onprem/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZuG-pJ9tE5Fpir5r-4bmYgAAAAM&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0

[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_onprem/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZuG-pJ9tE5Fpir5r-4bmYgAAAAM&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[5] https://www.theregister.com/2024/07/05/qilin_impacts_patient/

[6] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_onprem/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZuG-pJ9tE5Fpir5r-4bmYgAAAAM&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0

[7] https://www.theregister.com/2024/06/20/qilin_our_plan_was_to/

[8] https://www.theregister.com/2024/07/05/qilin_impacts_patient/

[9] https://www.theregister.com/2024/09/05/the_fingerpointing_starts_as_the/

[10] https://www.theregister.com/2024/06/20/qilin_our_plan_was_to/

[11] https://www.theregister.com/2024/06/21/qilin_cyber_scum_leak_the/

[12] https://www.theregister.com/2024/06/04/suspected_cyberattack_hits_major_london/

[13] https://www.theregister.com/2024/09/05/the_fingerpointing_starts_as_the/

[14] https://whitepapers.theregister.com/



Look Out! It's Microsoft Outlook

An old maxim in the Unix community states, "All programs expand until they
can read mail... except Microsoft Outlook." Well, that's no longer true.
By taking advantage of loopholes in several undocumented APIs, a team of
geeks were able to transform Outlook from a virus-delivery system into an
actual mail client.

"It was quite a feat to accomplish this," said one of the geeks. "I mean,
the rat's nest that is the Windows API can be used to frighten small
children... or adults. And the frequency by which Outlook exploits are
discovered is directly proportional to the number of times Bill Gates uses
the word 'innovation'. But this is the first time somebody has discovered
a beneficial exploit."

Microsoft has vowed to release a patch to fix the uncovered security
flaws. "We simply cannot tolerate unauthorized reverse engineering and
hacking of our innovative solutions. Our Security Response Team will pull
an all-nighter to eliminate these known issues."