Internal Reference Number: FOI_9332
Date Request Received: 07/04/2026 00:00:00
Date Request Replied To: 14/04/2026 00:00:00
This response was sent via: By Email
Request Summary: Cyber Security questions
Request Category: Students (Educational)
| Question Number 1: Under the Freedom of Information Act, I would like to request the following information for each calendar year from 2020 to 2026 inclusive: No specific details are requested in relation to software/hardware utilisation, but rather high-level causes of breaches. I believe the high-level nature of this request does not allow for the use of s.31(1)(a) of the FOIA as this would not be likely to prejudice the security of your systems or data, as these are historical incidents which have since been dealt with. The public interest in understanding breach causes across public sector organisations outweighs the public interest in the exemption. The number of cyber security breaches that have being identified that were found to be a result of a malicious threat actor (i.e. not accidental data breach) | |
| Answer To Question 1: 0 Recorded | |
| Question Number 2: The breakdown in high-level causes of these breaches as identified by cyber security incident response teams (CSIRTs), for example (but not limited to) unpatched software/hardware, lack of multi-factor authentication (MFA), leaked user credentials, lack of in-transit encryption, etc | |
| Answer To Question 2: No detail to report | |
| Question Number 3: The number of breaches that occurred that were attributed to a previously known vulnerability to the organisations hardware, software, policies, or processes, for example where system was known to be at risk due to being unpatched or out of support, or security controls were recommended but not enforced, and was defined within the resulting incident response report. | |
| Answer To Question 3: No detail to report | |
| Question Number 4: The estimated combined costs incurred as a result of cyber security breaches defined in request number one in each year. | |
| Answer To Question 4: No detail to report | |
| To return to the list of all the FOI requests please click here |
Our staff at SA¹ú¼Ê´«Ã½ Hospital have long been well regarded for the quality of care and treatment they provide for our patients and for their innovation, commitment and professionalism. This has been recognised in a wide range of achievements and it is reflected in our award of NHS Foundation Trust status. This is afforded to hospitals that provide the highest standards of care.
