Rechercher
Contactez-nous Suivez-nous sur Twitter En francais English Language
 











Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

Comment from Opentext Security Solutions - NHS 111 software outage confirmed as cyber-attack

August 2022 by Matt Aldridge, Principal Solutions Consultant, BrightCloud at OpenText Security Solutions

A cyber-attack caused a software outage affecting the NHS 111 service. It was spotted at 07:00 BST on Thursday last week. The attack targeted the system used to refer patients for care, including ambulances being dispatched, out-of-hours appointment bookings and emergency prescriptions. But the NHS said the disruption was minimal.

The comment from Matt Aldridge, Principal Solutions Consultant, BrightCloud at OpenText Security Solutions :

“Unfortunately, the NHS has been a common target for cybercriminals, but not surprisingly, as the healthcare industry has always been a prime target for attackers. As medical facilities’ services are essential and often cannot be disrupted without severe risk to patients, the industry is very much in the spotlight and must address security in multiple ways. Despite the NHS supplier stating that the attack affected a limited number of servers, putting in place a strong cyber resilience strategy to limit such an outage and to protect the organisation’s IT systems while keeping continuity of patients care at the forefront is key.

To meet the challenge of securing the health sector, now is a good time for all organisations to review their incident response plans, updating them as needed. Organisations need to take a proactive stance regarding cybersecurity and ensure adequate defences to mitigate future attacks and build cyber resilience. Staff training is essential for defending against phishing attacks and knowing what to look for. Regular simulations should be run to ensure that the training has the desired effect. The training materials used also need to be constantly updated to reflect the latest threat trends.

Further, IT teams must implement cybersecurity technology such as email filtering, anti-virus protection, and sensible password policies to grapple with cybersecurity. Security awareness training should be implemented for staff from day one, ensuring they are vigilant in scrutinising the types of emails, messages and phone calls they receive. Additionally, data must always be securely backed up, so systems can be restored if needed. Finally, multi-layered cybersecurity controls must be deployed to help detect or block anything that breaches the first line of defence – the people of the organisation.”


See previous articles

    

See next articles












Your podcast Here

New, you can have your Podcast here. Contact us for more information ask:
Marc Brami
Phone: +33 1 40 92 05 55
Mail: ipsimp@free.fr

All new podcasts