Software provider NHS Advanced has confirmed that it has suffered a ransomware (opens in a new tab) an attack that led to the theft of sensitive customer data.

The company claims that an unknown threat actor used “legitimate third-party credentials” that allowed them to establish a remote desktop (RDP) session to the Staffplan Citrix server.