The INC Ransom group, a ransomware gang, claims to have stolen data, including patients’ personal details, donation information, and procurement data from Alder Hey and Liverpool Heart and Chest Hospital NHS Foundation Trust. Screenshots of the alleged data have been published on the dark web, prompting the hospitals to work with the National Crime Agency to verify the possible breach.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is