British Healthcare System Spends £150m Extra On Cybersecurity

Uploaded on 2018-05-04 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Health & Welfare

The NHS is to spend £150m to bolster its defences against the “growing threat” of cyber-attacks following the chaos caused by the WannaCry virus.

Amid warnings that hackers linked to Russia and other countries have been targeting Britain’s critical national infrastructure, including power networks, a new security contract has been drawn up with Microsoft.

The Department of Health and Social Care said the package would enhance security intelligence and give individual trusts the ability to detect threats, isolate infected machines and kill malicious processes before they are able to spread.
Jeremy Hunt, the health secretary, said: “We know cyber-attacks are a growing threat, so it is vital our health and care organisations have secure systems which patients trust.

“We have been building the capability of NHS systems over a number of years, but there is always more to do to future-proof our NHS against this threat.

“This new technology will ensure the NHS can use the latest and most resilient software available, something the public rightly expect.”

It comes almost a year after the global WannaCry cyber-attack crippled parts of the NHS in May 2017, locking data on computers with demands for money.

At least 80 health trusts and 603 NHS organisations and GP practices were disrupted by the global ransomware attack, which caused 20,000 hospital appointments and operations to be cancelled as ambulances were diverted from some A&Es.
A scathing report by the National Audit Office said the “unsophisticated” attack could have been prevented if the NHS had followed basic IT security best practice.

“There are more sophisticated cyber threats out there than WannaCry so the Department and the NHS need to get their act together to ensure the NHS is better protected against future attacks,” said head Amyas Morse at the time.
The government was warned of the risk of cyber-attacks a year before the incident and trusts were instructed to move away from outdated software like Windows XP as early as 2014.

The new measures will ensure all health and care organisations can use the most up-to-date Windows 10 software with its latest security settings, giving the Care Quality Commission (CQC) regulator will new powers to inspect cyber and data security capabilities. The government has separately invested £60m to address key cyber security weaknesses and the new £150m will be spread across three years.

A new digital security operations centre is being set up to prevent, detect and respond to incidents, allow NHS Digital to respond to cyber-attacks more quickly and increase the abilities of local trusts.

There will be £21m to upgrade protective firewalls and network infrastructure at major trauma centre hospitals and ambulance trusts, £39m spent by NHS trusts on infrastructure weaknesses and a new a text messaging alert system able transmit information even if internet and email services are down.

All health and care organisations will be required to meet 10 standards set for data security and protection toolkit.
Lord O’Shaughnessy, a health minister, said: “Patient data must be properly protected and this significant investment will help to keep our systems resilient and up to date. “This will give patients greater confidence in how their information is managed by the NHS.”

Sarah Wilkinson, chief executive of NHS Digital, welcomed the announcement, adding: “The new Windows Operating System has a range of advanced security and identity protection features that will help us to keep NHS systems and data safe from attack.”

Independent

You Might Also Read:

NHS Trusts Failed Cyber Security Assessment:

Healthcare Suffers Most Cyber Security Incidents:
 

« TSB's IT Meltdown Was Evident A Year Before
Australia's Largest Bank Lost The Personal Financial Histories Of 12m Customers »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Spiceworks

Spiceworks

Spiceworks provide a range of free apps for IT professionals including network inventory, network monitor, and help desk.

Lantronix

Lantronix

Lantronix is a global provider of secure data access and management solutions for Internet of Things (IoT) and information technology assets.

OCERT

OCERT

OCERT is the National Computer Emergency Response Team of Oman.

Chubb

Chubb

Chubb is the world’s largest publicly traded property and casualty insurer. Commercial services include Cyber Risk insurance.

OIC-CERT

OIC-CERT

OIC-CERT is the Computer Emergency Response Team for Organisation of Islamic Cooperation (OIC) member countries.

Veracity Industrial Networks

Veracity Industrial Networks

Veracity provides an innovative industrial network platform that improves the reliability, efficiency, and security of industrial networks and devices.

iQuila

iQuila

iQuila is a virtual overlay network which runs on top of an existing network. It creates a secure software enabled layer 2 connection across the internet or any public or private cloud.

New Enterprise Associates (NEA)

New Enterprise Associates (NEA)

As one of the world’s largest and most active venture capital firms, NEA has developed deep domain expertise and insight into our industries of focus - technology and healthcare.

Security Alliance

Security Alliance

Security Alliance provide bespoke cyber intelligence consulting and research services.

Brookcourt Solutions

Brookcourt Solutions

Brookcourt Solutions delivers cyber security, network monitoring technologies and managed security services to help secure and protect your organisation’s critical infrastructure.

AlJammaz Technologies

AlJammaz Technologies

AlJammaz Technologies is the leading Technology Value-Added Distributor, which distributes advanced technology products, solutions and services in area including networking and cybersecurity.

CyberLab

CyberLab

CyberLab (formerly Chess) is a specialist cyber security company that provides a wide range of security solutions and services.

RedHunt Labs

RedHunt Labs

RedHunt Labs is a premier Cybersecurity Solutions provider, offering Attack Surface Management solution 'NVADR' and Penetration Testing services.

CFTS

CFTS

CFTS 'Computer Facilities Technical Services' is a Ugandan ICT Support Company that specialises in infrastructure and support services including network security.

ZainTech

ZainTech

Zaintech is a regional digital & ICT solutions provider offering comprehensive digital solutions and services to enterprise and government customers in the MENA region.

Cyber Industrial Networks

Cyber Industrial Networks

Cyber Industrial Networks objective is to service the needs of industry in achieving reliable, robust and secure infrastructure that supports productivity.