• Office Hours : 08:30 - 17:30

NHS Cyber Attack Highlights Urgent Need for O-Type Blood Donations and Cybersecurity Preparedness

In this insight, we examine the recent NHS cyber-attack, its repercussions, and why robust cybersecurity measures are essential for all businesses.

What Happened?

On June 3, Synnovis, a provider of lab services to the NHS, suffered a ransomware cyber-attack, severely disrupting operations at several major London hospitals, including King’s College Hospital, Guy’s and St Thomas’, the Royal Brompton, and the Evelina London Children’s Hospital. This attack, attributed to the Russian cybercriminal group Qilin, also affected primary care services in southeast London.

The Effects

The attack prompted several hospitals to declare a critical incident. The immediate effects included canceled operations, patient diversions to other trusts, and significant disruptions in vital areas like transplant surgeries and blood transfusions.

Urgent Appeal for Blood Donations

Due to the disruption, affected hospitals struggled to match patients’ blood types swiftly. Given that blood has a shelf life of only 35 days and the backlog of operations due to the cyber-attack, an urgent appeal was issued. On June 10, NHS Blood and Transplant (NHSBT) called for O-positive and O-negative blood donors to book appointments at one of the 25 NHS Blood Donor Centres in England to boost O-type blood stocks.

Hospitals use O-negative blood when a patient’s blood type is unknown since it is the “universal blood type.” O-positive blood, the most common type, can be given to anyone with any positive blood type. More units of these types of blood are needed to support frontline staff and keep services running safely.

The Motivation?

Reports suggest that the primary aim of the attack was not financial extortion, despite the use of ransomware. Instead, it appears the intent was to disable the system.

In response, NHS London launched a cyber response team. Notably, just days before the attack, NHS England had invested £3 million in contracts with KPMG and Deloitte for “cyber incident response” services over the next two years.

Why Are Hospitals Frequent Targets for Cyber Criminals?

Hospitals are prime targets due to their critical and sensitive data, often outdated systems, and inability to afford prolonged downtimes. This makes them more likely to pay ransoms. The widespread use of networked medical devices and historical underinvestment in cybersecurity also contribute to their vulnerability.

The last major cyber-attack on UK hospitals, the “WannaCry” ransomware attack in May 2017, caused widespread disruption and highlighted significant cybersecurity weaknesses in the NHS’s infrastructure.

What Does This Mean for Your Business?

The ransomware attack on Synnovis underscores the critical importance of cybersecurity for businesses across all sectors. This incident serves as a stark reminder that cyber threats pose an ever-present risk with far-reaching consequences.

The disruption to healthcare services highlights the vulnerabilities that many organizations face, especially those handling sensitive data and relying on complex IT systems. Ensuring robust cybersecurity measures is essential for operational resilience. Regular software updates, security audits, and staff training on cybersecurity best practices are crucial steps to mitigate such risks.

Cyber-attacks can cause significant financial and reputational damage, resulting in downtime, loss of customer trust, and potential legal ramifications if sensitive data is compromised. Investing in cybersecurity is not just a defensive measure but a proactive investment in the continuity and sustainability of your business.

The NHS’s quick response, including deploying a cyber incident response team and investing in cybersecurity services, illustrates the importance of having a well-prepared response plan. Businesses should develop and regularly update their incident response plans to respond quickly and effectively to any cyber threats. Clear communication strategies should be in place to keep stakeholders informed during and after an incident.

The urgent appeal for blood donations following the cyber-attack is a reminder of the interconnectedness of our modern world. Disruptions in one sector can have cascading effects across others, emphasizing the importance of collaboration and support within and between industries. Building strong partnerships and networks to enhance collective cybersecurity resilience is vital for businesses.


The Synnovis cyber-attack that disrupted critical UK healthcare services is a wake-up call for businesses and organizations to prioritize cybersecurity. By taking proactive measures to protect IT infrastructure, investing in robust security solutions, and preparing comprehensive response plans, businesses can better safeguard against cyber-attacks and ensure long-term viability in an increasingly digital world.