NHS GP software supplier hit by cyber attack

p Back to Top ppDXS International which provides healthcare technology for the NHS has disclosed a cyber attack which has led to data being stolenppThe UKbased company provides software that helps to reduce costs for doctors and primary care physicians and is used by around 2000 GPs which oversee the care of around 17 million patientsppIn a filing with the Stock Exchange published on 18 December 2025 the company said it had discovered a security incident affecting its office servers on 14 DecemberppDXS said that it had immediately contained the breach working together with the NHS and had notified law enforcement and regulators including the Information Commissioners Office about the attackppThere was minimal impact on the companys services and the companys frontline clinical services remain unaffected and operational the filing addsppDXS said that it has hired a cybersecurity firm to investigate the nature and extent of the incidentppRansomware group DevMan took credit for the breach earlier this week in a post on its dark web site seen by TechCrunch in which the hackers claim to have stolen 300 gigabytes of data from the companyppAn spokesperson for NHS England spokesperson told Digital Health News We along with the National Cyber Security Centre and law enforcement partners are working with an NHS supplier who is investigating a cyber incident We are not aware of any patient services being impactedppCommenting on the attack cybersecurity expert Saif Abed founding partner and director at The AbedGraham Group said Its too early to speculate about the circumstances of this breach but once again the NHS supply chain is under the spotlightppThe government needs to strengthen oversight and requirements for suppliers and a critical way to do this is to start with a root and branch inquiry into the state of NHS cybersecurity and patient safetyppThe incident follows a cyber attack on Barts Health NHS Trust which led to personal patient and staff information being posted on the dark web after a criminal group known as Cl0p exploited a loophole in the Oracle Ebusiness Suite softwareppMeanwhile pathology supplier Synnovis is contacting NHS organisations which had data stolen and published online following a major cyber attack in June 2024 which led to a patient death and disrupted services throughout LondonppIn November 2025 the Cyber Security and Resilience Bill was introduced in Parliament to help protect the NHS and other sectors from the threat of cyber attacksppAround 1000 service providers will fall in the scope of measures which will require thirdparty suppliers to boost their cyber security to minimise the possible impact of cyber attacks and improve their data protection and network security defencespp

Digital Health Digest

pp

Digital Health Main Newsletter List

pp

Intelligence Roundup List

pp

Digital Health Daily Newsletter


pp
First Name

pp
Last Name

pp
Email Address

pp
Job Title

pp
Organisation

pp

ppPrev NewsppNext NewsppYour email address will not be published Required fields are marked pp

ppppΔdocumentgetElementById akjs1 setAttribute value new Date getTime ppThis site uses Akismet to reduce spam Learn how your comment data is processedppDigital Health Intelligence LimitedRegistered Office 3rd Floor The Foundry 77 Fulham Palace Rd London W6 8JAppRegistered No 9257440Vat No 198 3531 71ppCopyright 2026 Digital Healthp