Calendar An icon of a desk calendar. Cancel An icon of a circle with a diagonal line across. Caret An icon of a block arrow pointing to the right. Email An icon of a paper envelope. Facebook An icon of the Facebook "f" mark. Google An icon of the Google "G" mark. Linked In An icon of the Linked In "in" mark. Logout An icon representing logout. Profile An icon that resembles human head and shoulders. Telephone An icon of a traditional telephone receiver. Tick An icon of a tick mark. Is Public An icon of a human eye and eyelashes. Is Not Public An icon of a human eye and eyelashes with a diagonal line through it. Pause Icon A two-lined pause icon for stopping interactions. Quote Mark A opening quote mark. Quote Mark A closing quote mark. Arrow An icon of an arrow. Folder An icon of a paper folder. Breaking An icon of an exclamation mark on a circular background. Camera An icon of a digital camera. Caret An icon of a caret arrow. Clock An icon of a clock face. Close An icon of the an X shape. Close Icon An icon used to represent where to interact to collapse or dismiss a component Comment An icon of a speech bubble. Comments An icon of a speech bubble, denoting user comments. Comments An icon of a speech bubble, denoting user comments. Ellipsis An icon of 3 horizontal dots. Envelope An icon of a paper envelope. Facebook An icon of a facebook f logo. Camera An icon of a digital camera. Home An icon of a house. Instagram An icon of the Instagram logo. LinkedIn An icon of the LinkedIn logo. Magnifying Glass An icon of a magnifying glass. Search Icon A magnifying glass icon that is used to represent the function of searching. Menu An icon of 3 horizontal lines. Hamburger Menu Icon An icon used to represent a collapsed menu. Next An icon of an arrow pointing to the right. Notice An explanation mark centred inside a circle. Previous An icon of an arrow pointing to the left. Rating An icon of a star. Tag An icon of a tag. Twitter An icon of the Twitter logo. Video Camera An icon of a video camera shape. Speech Bubble Icon A icon displaying a speech bubble WhatsApp An icon of the WhatsApp logo. Information An icon of an information logo. Plus A mathematical 'plus' symbol. Duration An icon indicating Time. Success Tick An icon of a green tick. Success Tick Timeout An icon of a greyed out success tick. Loading Spinner An icon of a loading spinner. Facebook Messenger An icon of the facebook messenger app logo. Facebook An icon of a facebook f logo. Facebook Messenger An icon of the Twitter app logo. LinkedIn An icon of the LinkedIn logo. WhatsApp Messenger An icon of the Whatsapp messenger app logo. Email An icon of an mail envelope. Copy link A decentered black square over a white square.

Cyber attack: NHS ‘needs to change’

NHS Cyber Attack; Hairmeyers
NHS Cyber Attack; Hairmeyers

HOSPITAL chiefs failed to adequately invest in computer security despite a wave of attempted cyber attacks on Scottish health boards, an expert warned last night.

Injured patients were turned away and appointments cancelled after 11 of the country’s 14 health boards were hit by a massive malicious hack on Friday, which is believed to be the biggest of its kind ever seen.

Almost 100 countries were caught up in the onslaught, causing widespread chaos in hospitals, companies and government agencies across the globe.

NHS bosses are now scrambling to restore systems by tomorrow morning, but insisted no patient data had been compromised.

Figures obtained by The Sunday Post show nearly every health board in Scotland has been targeted by a ransomware attack – whereby hackers block a computer until money is paid – over the last five years.

However, our research shows relatively small sums are being spent on cyber security since 2012, ranging from NHS Lothian’s £445,000 to £125,000 by the Scottish Ambulance Service.

Leading cyber security expert Professor Bill Buchanan said: “For some reason we have underinvested in IT in the NHS.

“I feel quite sorry for them – they are faced maybe not with the best systems. But they need to change.”

Across Scotland, GPs spoke of “massive disruption” as the cyber attackers locked computers and demanded a payment worth £230 per machine to access files.

Lanarkshire NHS was the worst hit board. At Hairmyres hospital in East Kilbride, patients were turned away as they went in to A&E – while others received minimal treatment.

Signs outside the unit warned patients not to book in unless they had “a very serious illness or injury.”

Dr Helen Mackie, chief of medical services at the hospital, urged patients to take their medication with them, warning doctors could have problems accessing their records.

Elsewhere, Dr Emma Fardon, a GP in Dundee, said the attack had had a “massively disruptive effect”.

She said: “We can’t access any patients’ records. Everything is fully computerised.”

In total, 45 NHS organisations in England and Scotland were disrupted – while the huge Nissan plant in Sunderland was among firms hit. Questions are now being asked over the use of old computer systems and the failure of some health boards to implement a vital security update issued by Microsoft in March.

The Nissan UK factory in Sunderland
The Nissan UK factory in Sunderland

NHS Fife admitted the fix had not yet been applied – despite Microsoft bosses labelling it “critical” – while NHS Lanarkshire was unable to say. NHS Grampian could only say it had been applied to “the majority” of servers.

Meanwhile, NHS Highland, NHS Ayrshire and Arran, NHS Glasgow and NHS Western Isles all said some of their computers still used the vulnerable 15-year-old Windows XP operating system.

They said an emergency security update had been issued by Microsoft and was being deployed.

Health boards have faced numerous computer blackmail attempts in recent years, with NHS Greater Glasgow and Clyde alone hit with three ransomware attacks last year.

In the vast majority of cases, NHS staff did not hand over money to unlock their files. Instead, the computer was broken down and rebuilt by IT staff.

Professor Buchanan, from Napier University, said early signs indicated the massive hack had been able to cripple NHS computers due to the failure to implement Microsoft’s update – as well as a vulnerable gap in an NHS firewall.

He insisted any failure to apply Microsoft’s fix was “negligence” if it had been the cause.

“It looks like that was the way that the ransomware got in.

“Companies have had about four or five weeks to patch and it obviously hasn’t happened in many cases. You need to be doing that in a few days – especially with something like the NHS.”

Scottish Health Secretary Shona Robison said: “This has been a global cyber-attack which has impacted on countries across the world and clearly any incident of this nature is hugely concerning – but it’s important to stress that there is no evidence to suggest patient data has been compromised.

“We have taken steps to ensure the cause of this attack is identified and have managed to isolate the issues within the NHS in Scotland.

“Boards are working on protecting and restoring those systems, with a view to getting most operational by Monday.”

Europol, the European Union’s police agency, said “a complex international investigation” would be required to identify the culprits.

Experts said the ransomware appeared to exploit a vulnerability in Microsoft Windows that was purportedly identified by the US National Security Agency for its own intelligence-gathering purposes and later leaked to the internet.