Barts Health NHS Confirms Data Breach After Oracle Zero-Day Attack by Clop

Barts Health NHS Trust has disclosed a significant data breach affecting patient billing information and staff records after the Cl0p ransomware group exploited a zero-day vulnerability in Oracle E-Business Suite software.

The breach compromised files containing personal data of individuals who paid for treatment or services at Barts Health hospitals over several years.

Attack Details and Exploitation Method

According to Barts Health NHS, the Cl0p syndicate exploited a critical vulnerability in Oracle E-Business Suite, a suite of enterprise software that automates key business processes for organisations worldwide.

The attackers accessed a database containing invoice records, extracted files, and published them on the dark web.

Oracle has since patched the security flaw following a widespread exploitation campaign that affected numerous organizations worldwide.

The stolen files include names and addresses of patients liable to pay for treatment at Barts Health facilities.

Additionally, some former staff members appear in the compromised data due to outstanding debts related to salary sacrifice schemes or overpayment reconciliation.

Nearly half of the affected files contain publicly available information about suppliers of goods and services to the trust.

The data theft occurred in August 2025, but Barts Health remained unaware that trust data had been compromised until November, when Cl0p posted the stolen files on the dark web.

To date, the information has not appeared on the general internet, limiting exposure to individuals with access to compressed files on the encrypted dark web.

Security experts warn that while the stolen details do not provide direct account access, criminals could exploit this information for social engineering attacks or payment fraud schemes.

Affected paying patients should review their treatment invoices to understand what personal information may be at risk.

Barts Health has issued an apology and is implementing additional security measures with suppliers to prevent similar incidents.

Concerned individuals can contact the trust’s data protection officer or visit government fraud prevention resources for guidance on protecting their personal information.

Find this Story Interesting! Follow us on Google News , LinkedIn and X to Get More Instant Updates

The post Barts Health NHS Confirms Data Breach After Oracle Zero-Day Attack by Clop appeared first on Cyber Security News.