Cyberattack Linked to Patient Death at London Hospital, Exposing Health Sector Vulnerabilities

A cyberattack on the British diagnostic services provider Synnovis has been identified as a contributing factor in the death of a patient at King’s College Hospital in London, according to UK health officials. The incident, which occurred in June 2024, marks one of the first confirmed fatalities partially attributed to a hacking event in the country’s healthcare sector.

The ransomware attack, attributed to the Qilin group, severely disrupted Synnovis’s operations, leading to significant delays in blood test results and other critical medical services. The hospital’s managing organization stated that the patient’s death was partially caused by the “prolonged delay” in receiving blood test results, among other factors. The family of the deceased has been notified, but further details have not been made public.

Synnovis CEO Mark Dollar expressed deep regret, acknowledging the criminal cyberattack as one of the contributing factors to the tragedy. The attackers reportedly demanded a $50 million ransom, which Synnovis did not pay. As a result, sensitive data was released on the dark web, compounding the operational and financial fallout. Synnovis later reported that the incident had cost the company over £32 million ($43 million).

The attack caused widespread disruption across several major London hospitals, forcing staff to revert to manual processes and delaying hundreds of operations and outpatient appointments. The incident highlighted the growing threat of ransomware to healthcare providers, who are often targeted due to the critical nature of their services and the assumption that they will pay to avoid patient harm.

While previous ransomware attacks in other countries have also been tentatively linked to fatalities, establishing a direct cause-and-effect relationship remains complex. Nonetheless, this case underscores the potentially deadly consequences of cyberattacks on healthcare infrastructure.

“We are saddened that this criminal cyberattack has been one of the contributing factors that led to a patient’s death,” said Synnovis CEO Mark Dollar.

Disclaimer

This article is based on information available as of June 28, 2025, and draws from official statements and media reports. Details regarding the patient and the full circumstances of the death have not been publicly disclosed. The investigation into the incident and its broader implications for healthcare cybersecurity is ongoing.