1. How many times has your organisation been a victim of a cyber attack in the last two years?  Once– this did not result in a loss of data

2. How many times has your organisation been a victim of a ransomware attack in the last two years?  Our mail filters regularly detect and block emails containing ransomware so whilst we have been targeted with ransomware, we have not been a victim of it.

In each case, was a ransom paid and if so how much was paid?  Not applicable.

3. For each of the cyber and ransomware attacks, please provide a summary of the incident. This should including details of who was targeted, how they were targeted, what the immediate impact was, for instance was patient or staff data targeted, and if so in what way and how many people’s data was affected? For each of the attacks, please also detail whether the police became involved, and whether the perpetrator or perpetrators were caught?

This Trust like many organisations will be subject to virus, ransomware etc attacks on a daily basis however the majority of these attacks are detected and prevented by firewalls and AV solutions.

The instance referred to in Question 1 related to an instance where a USB device containing a virus was connected to the network which infected data within a windows file share in a particular department-this created disruption for the service until resolved. It is impossible to say who/ how data may have been affected as services use file shares for a number of purposes, however patient data would usually be held on clinical systems and not within file shares.