RANSOMWARE
The message that appears if encryption occurs.
Two days ago, the NHS was hit by a major cyber-attack using ransomware. Computer screens suddenly announced that files and data were unavailable unless the user paid a fee. In some Health Board Trusts, phones stopped working, too; patients were advised not to go to A&E, and the full effect of this attack will not be known until this week when many employees may find that their computers will not function. The virus is worming its way through networks that could yet reap much more havoc. While state organisations like the NHS have many questions to answer, including the pitiful support they have given to their IT systems – including the running of out-of-support Windows XP systems – holding the nation’s healthcare hostage in this way is an unconscionable criminal act. It is also a wake-up call to the British state. Our newfound reliance upon electronic communications leaves the country vulnerable to extortion.
Of course, it is important to keep pace with technological change, especially if it promises to save money and streamline record keeping. But putting so many eggs in one basket does incur risk – and there have been many warnings before now that the NHS is struggling to keep things in good order. Last month, Barts Health, England’s largest trust, had to cancel at least 136 operations and “hundreds” of chemotherapy sessions after its IT systems went down; it also suffered a ransomware attack in January. It is feared that some trusts are continuing to use outdated software that might be more exposed to attack.
This is why patients have often expressed nervousness about the reliance upon NHS databases, particularly the notion of a national one. No matter how many assurances are made to the public that such arrangements are airtight, the criminals always seem to find a way to get in. The solution is obviously to tighten security; equally it is imperative that users take care – a system is only as strong as its most fallible point. Either way, it is now up to the security services to act and act fast. Cyber-crime – which has previously hit companies such as TalkTalk – costs the economy billions and puts lives at risk. The Government has to get on top of it. It has failed in its duty of care by taking necessary measures in protecting the most sensitive of information.
Arts, reviews & current affairs 