IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

St John Ambulance hit by ransomware

First aid charity says the attack was quickly ended and no personal data stolen

Hackers have turned their sights on one of the UK's most well-known health charities earlier this week, it has been revealed, in an attempt to extort money by locking their systems.

St John Ambulance, a charity that specialises in first aid delivery and training, said that on 2 July at 9.00am it was hit by a ransomware attack.

In a statement emailed to customers and posted to its website, the organisation said the incident only lasted an hour and while it was temporarily blocked from accessing certain booking information the charity is "confident that data has not been shared outside St John Ambulance".

"The only data that has been affected relates to our training course delivery. It does not cover supplies, events, ambulance operations, volunteering, volunteer, data, employee data, clinical data or patient data," it said.

It also told customers: "You don't need to take any immediate action. However, if you work for one of our corporate customers, please pass this email on to the person in your organisation who is responsible for data protection."

St John Ambulance also noted it's followed its legal obligation to inform the Information Commissioner's Office (ICO) and has also contacted the Charity Commission and the police.

Independent security analyst Graham Cluley said in a blog post: "My reading of this is that St John Ambulance did not have to pay hackers a ransom to recover access to the encrypted data, but instead were able to put in place emergency recovery plans to restore from unaffected backup systems. That's in marked contrast to ransomware attacks that have hit American cities in recent weeks which have resulted in extortionists being paid over a million dollars.

"The news that St John Ambulance had calmly resolved the incident within half an hour seems pretty impressive to me, and together with the transparency they show in their disclosure will hopefully reassure those who deal with the charity. If only all organisations and companies could put themselves in a recovery position so confidently."

Featured Resources

The Total Economic Impact™ Of Turbonomic Application Resource Management for IBM Cloud® Paks

Business benefits and cost savings enabled by IBM Turbonomic Application Resource Management

Free Download

The Total Economic Impact™ of IBM Watson Assistant

Cost savings and business benefits enabled by Watson Assistant

Free Download

The field guide to application modernisation

Moving forward with your enterprise application portfolio

Free Download

AI for customer service

Discover the industry-leading AI platform that customers and employees want to use

Free Download

Recommended

Ransomware now strikes one in 40 organisations per week, Check Point finds
ransomware

Ransomware now strikes one in 40 organisations per week, Check Point finds

27 Jul 2022
Darktrace AI’s Antigena helps stop ransomware attack at Dordogne GHT
ransomware

Darktrace AI’s Antigena helps stop ransomware attack at Dordogne GHT

13 Apr 2022
Sabbath hackers are targeting US schools and hospitals
ransomware

Sabbath hackers are targeting US schools and hospitals

29 Nov 2021
Out-of-hours ransomware attacks have a greater impact on revenue
ransomware

Out-of-hours ransomware attacks have a greater impact on revenue

18 Nov 2021

Most Popular

Why convenience is the biggest threat to your security
Sponsored

Why convenience is the biggest threat to your security

8 Aug 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

29 Jul 2022
The benefits of a hardware update for SMBs
Sponsored

The benefits of a hardware update for SMBs

2 Aug 2022