NOTICE OF CYBER INCIDENT-CVS GROUP PLC

NOTICE OF CYBER INCIDENT-CVS GROUP PLC

Notice of Cyber Incident

 

CVS Group announces it has recently detected and intercepted a cyber incident which had involved unauthorised external access to a limited number of its IT systems.

 

Upon discovery of the incident, CVS took immediate steps to isolate the issue and, to prevent wider unauthorised access, took its IT systems temporarily offline, as part of the Group's response plan. Our responses to contain the threat of malicious activity have caused considerable operational disruption over the past week, but to date have been effective in preventing further external access to CVS systems.  Specialist third party consultants have been engaged to investigate the nature and extent of the incident and to support the response across the Group. CVS has also proactively informed the relevant authorities, including the Information Commissioner's Office, due to the risk of malicious access to personal information.

 

Whilst the prompt actions taken by the Group have limited the cyber incident, they have resulted in disruption to UK operations. Through the efforts of our colleagues, we have continued to provide our usual high levels of clinical care to clients and patients at the majority of our practices. IT services to our practices and business functions have now been securely restored across the majority of the estate; however, due to the increased levels of security and monitoring, some systems are not working as efficiently as previously and this is likely to result in an ongoing operational impact. Operations outside the UK remain operationally unaffected as do non-CVS hosted systems and the Group's e-commerce systems.

 

As a result of this incident, the Group is accelerating its plans to migrate its practice management system and related IT infrastructure to the Cloud to both provide enhanced security across our estate and to deliver operational efficiencies. Whilst we will continue to focus on providing high levels of clinical care to clients and patients, the security steps taken and the planned migration of our operational systems are likely to have an impact on operations for a number of weeks.

 

The forensic analysis is ongoing and we will continue to take all necessary steps to protect our business. The Group will provide a further update in due course.

 

We would like to thank all our colleagues for their support and professionalism in maintaining our veterinary services throughout this incident.

 

No Comments

Post a Comment