In August 2022, Advanced experienced a cybersecurity incident caused by [[LockbitLockBit|LockBit 3.0]] ransomware.<ref>{{Cite news |date=2022-08-05 |title=NHS 111 software outage confirmed as cyber-attack |language=en-GB |work=BBC News |url=https://www.bbc.com/news/uk-wales-62442127 |access-date=2023-11-13}}</ref> Adastra, Caresys, Odyssey, Carenotes, Crosscare, Staffplan and eFinancials products were all affected, with varying downtime and recovery. Perpetrators of the attack were able to extract information relating to 16 Staffplan and Caresys customers.<ref>{{Cite web |date=2022-10-13 |title=Client data exfiltrated in Advanced NHS cyber attack |url=https://www.digitalhealth.net/2022/10/client-data-exfiltrated-advanced-nhs-cyber-attack/ |access-date=2022-10-27 |website=Digital Health |language=en-GB}}</ref>
The cyber attack including resulting remediation and outage credits cost the group £18.2 million in 2023 with a further £2.7 million provisioned for additional expenditure in future years.<ref name=":0" />
