What does the London NHS hospitals data theft mean for patients? | Cybercrime

Russian cybercrime group, Qilin, has stolen and released nearly 400GB of sensitive patient data from NHS joint venture Synnovis, impacting seven hospitals. The data relates to approximately 300 million patient interactions and includes HIV and cancer blood test results. The release implies the company refused to pay a demanded ransom. The National Cyber Security Centre, among others, is analysing the data to understand the full implications. NHS England assures patients that their data is protected under GDPR and breaches could result in compensation.