Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Barts Health NHS Trust

Barts Health NHS Trust Vendor Cyber Rating & Cyber Score

nhs.uk

Barts Health is the largest NHS trust in the country, and one of Britain’s leading healthcare providers. We serve 2.5 million people across east London and manage five hospital sites which are Mile End Hospital, Newham University Hospital, St Bartholomew’s Hospital, The Royal London Hospital and Whipps Cross University Hospital. Our main priority is to ensure we provide safe and quality care for our patients, many of whom come from some of the most diverse and deprived communities in Britain. We offer specialist heart and cancer services at St Bartholomew’s for patients from all over London and provide Community Health Services for Tower Hamlets from Mile End. With 727 beds, The Royal London is one of the UKs largest hospitals and most


BHNT A.I CyberSecurity Scoring

BHNT
Company Information
Website:http://www.bartshealth.nhs.uk
Employees number:9,885
Number of followers:78,381
NAICS:62
Industry Type:Hospitals and Health Care
Homepage:nhs.uk
BHNT Risk Score (AI oriented)
Between 0 and 549
logo
BHNTHospitals and Health Care
Updated:
30/03/2026
539/1000
Critical
C
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
BHNT Global Score (TPRM)
xxxx
logo
BHNTHospitals and Health Care
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

BHNT
BHNTCritical
Current Score
539C (CRITICAL)
01000
3 incidents
-91.33 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
558Before Incident
JUNE 2026
553Before Incident
MAY 2026
548Before Incident
APRIL 2026
544Before Incident
MARCH 2026
539Before Incident
FEBRUARY 2026
530Before Incident
JANUARY 2026
527Before Incident
DECEMBER 2025
568Before Incident
Breach
05 Dec 2025BHNT
Barts Health NHS Trust: Barts Health Seeks High Court Ban After Oracle EBS Breach

Barts Health NHS Trust Data Breach Linked to Oracle EBS

515After Incident
CRITICAL-53
BAR1765187700
A leading NHS trust has become the latest organization to notify about a data breach linked to its use of Oracle E-business Suite (EBS). Barts Health said in an update on Friday that it is seeking a High Court order to prevent the sharing, publication or use of the breached data. “A criminal group known as Cl0p stole some files from a database containing invoices and posted them on the dark web. The stolen files include names and addresses of individuals who were liable to pay for treatment or services at a Barts Health hospital over several years,” it explained. “We are working with NHS England, the National Cyber Security Centre, and the Metropolitan Police, and reported the breach to relevant regulators including the Information Commissioner’s Office.” Read more on Oracle EBS breach: GlobalLogic Becomes Latest Cl0p Victim After Oracle EBS Attack The trust’s electronic patient records, clinical systems and core IT infrastructure are unaffected by the breach, although those affected could include suppliers, former employees and patients at other hospitals. “Some former staff members are also listed because they left employment owing the trust for salary sacrifice or overpayment. Almost half of the potentially compromised files list suppliers of goods or services whose details are in the public domain,” the notice continued. “The database also includes files relating to accounting services we provided since April 2024 to Barking, Havering and Redbridge University Hospi
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Data exfiltration and extortion
IMPACT
Data Compromised: Names and addresses of individuals liable for payment, supplier details, former employee detailsSystems Affected: Oracle E-business Suite (EBS) databaseBrand Reputation Impact: Potential reputational damageIdentity Theft Risk: High
DATA BREACH
Type Of Data Compromised: Personal and financial information (names, addresses, invoices)Sensitivity Of Data: High (personally identifiable information)Data Exfiltration: YesInvoicesPersonally Identifiable Information: Names, addresses
NOVEMBER 2025
690Before Incident
Ransomware
01 Nov 2025BHNT
Barts Health NHS Trust: Barts Health NHS Confirms Cl0p Ransomware Behind Data Breach

Cl0p Ransomware Attack on Barts Health NHS Trust

562After Incident
CRITICAL-128
BAR1765043770
Barts Health NHS Trust has confirmed that the Russian-speaking Cl0p ransomware group stole files from one of its invoice databases after exploiting a vulnerability in Oracle E-Business Suite. The breach exposed data linked to payments for treatment and services, with some records going back several years. Hackread.com first reported on the Cl0p activity in November twenty twenty five, noting the group had leaked 241 GB of NHS data on its hidden site shortly after claiming responsibility for a wider campaign against healthcare targets. Cl0p Ransomware leaking NHS data (Image credit: Hackread.com) Now, according to Barts’ press release, the stolen material includes names and addresses of patients who were billed for care, records of former staff with unresolved salary issues and payment details for suppliers. Most supplier information is already public. Clinical systems and patient records were not affected. Files linked to accounting services provided to Barking Havering and Redbridge University Hospitals NHS Trust since April 2024 were also compromised. Barts advises patients to review any invoices they received to understand if their data was involved. The breach occurred in August but went undetected until November, when the files surfaced on the Cl0p ransomware‘s dark web leak site. Oracle has since patched the exploited flaw. Barts has reported the incident to NHS England, the National Cyber Security Centre, the Metropolitan Police and data regulators. It is also see
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial gain (ransomware extortion)
IMPACT
Data Compromised: 241 GB of NHS data leakedSystems Affected: Invoice database, accounting servicesOperational Impact: Potential disruption to billing and accounting servicesBrand Reputation Impact: YesLegal Liabilities: Potential regulatory fines and legal actionsIdentity Theft Risk: Yes (patient and staff personal data exposed)Payment Information Risk: Yes (supplier payment details exposed)
DATA BREACH
Patient billing information (names, addresses)Former staff salary recordsSupplier payment detailsSensitivity Of Data: High (personally identifiable information, financial data)Data Exfiltration: Yes (241 GB of data leaked on dark web)Personally Identifiable Information: Yes
OCTOBER 2025
690Before Incident
SEPTEMBER 2025
688Before Incident
AUGUST 2025
778Before Incident
Ransomware
01 Aug 2025BHNT
Barts Health NHS Trust: Patient and staff data impacted by Cl0p ransomware attack on Barts Health NHS

Cl0p Ransomware Exploits Oracle E-Business Suite at Barts Health NHS Trust

685After Incident
CRITICAL-93
BAR1765216474
Barts Health NHS Trust confirmed Cl0p ransomware exploited Oracle E-Business Suite, stealing invoice-related data Exposed info includes names, addresses, and patient and former staff records Trust says systems remain secure, seeks High Court order to block data use Barts Health NHS Trust is the latest organization to confirm it has suffered a ransomware attack through the Oracle E-Business Suite vulnerability. In a data breach notification letter posted late last week, the organization said that the infamous ransomware group Cl0p used the E-Business Suite bug in August to breach IT infrastructure and access a database “containing invoices”. The breach wasn’t spotted until recently, when Cl0p published the stolen data on the dark web. That data, according to the Trust, includes people’s names and addresses, as well as data “relating to accounting services provided since April 2024 to Barking, Havering and Redbridge University Hospitals NHS Trust”. Catch the price drop- Get 30% OFF for Enterprise and Business plans The Black Friday campaign offers 30% off for Enterprise and Business plans for a 1- or 2-year subscription. It’s valid until December 10th, 2025. Customers must enter the promo code BLACKB2B-30 at checkout to redeem the offer. Urgent action Patients, and former staff members, seem to be among those affected, but it's not yet known exactly how many individuals have had their data stolen. Barts says its electronic patient record and clinical systems were not af
INCIDENT DETAILS -
TYPE
Ransomware
IMPACT
Data Compromised: Invoice-related data, names, addresses, patient and former staff recordsSystems Affected: Database containing invoicesIdentity Theft Risk: High
DATA BREACH
Invoice-related dataNamesAddressesPatient recordsFormer staff recordsSensitivity Of Data: HighData Exfiltration: YesPersonally Identifiable Information: Yes

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for BHNT ?
?
What was BHNT's A.I Rankiteo Cyber Score in June 2026 ?
?
What was BHNT's A.I Rankiteo Cyber Score in May 2026 ?
?
What was BHNT's A.I Rankiteo Cyber Score in April 2026 ?
?
What was BHNT's A.I Rankiteo Cyber Score in March 2026 ?
?
What was BHNT's A.I Rankiteo Cyber Score in February 2026 ?
?
What was BHNT's A.I Rankiteo Cyber Score in January 2026 ?
?
What was BHNT's A.I Rankiteo Cyber Score in December 2025 ?
?
What was BHNT's A.I Rankiteo Cyber Score in November 2025 ?
?
What was BHNT's A.I Rankiteo Cyber Score in October 2025 ?
?
What was BHNT's A.I Rankiteo Cyber Score in September 2025 ?
?
What was BHNT's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on BHNT's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with BHNT ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view BHNT's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?