Categories: CyberCrimeSecurity

A Third Of NHS Trusts Targeted By Ransomware Attacks

A Freedom of Information (FOI) request has revealed that 87 NHS Trusts in England, Scotland and Wales – just under 34 percent of the total – have been targeted by ransomware attacks within the last 18 months.

All 260 Trusts responded to the FOI request, submitted by digital workplace firm RES, while 18 claimed exemption to providing information due to data rules around patient safety and four others either had been absorbed by another trust or didn’t hold the relevant information.

The data paints a worrying picture of the prevalence of such attacks targeting the healthcare sector in the UK and is in line with similar research carried out last month when 94 Trusts responded.

NHS security

In England specifically, 79 out of 239 trusts (33 percent) admitted to being targeted by ransomware in the last 12 months, while Scotland had by far the biggest issue with 8 out of 14 NHS trusts (57 percent) attacked.

“Healthcare organisations such as these NHS trusts are a prime target for attackers due to the nature of the data they hold,” said Jason Allaway, RES head of UK and Ireland. “Rather than the purely monetary value of data from many businesses and other sectors, healthcare has long been a top target for ransomware attacks as access to the data they hold can literally be the difference between life or death. Hackers know the hospital will have to pay or risk patients’ wellbeing.

“Education, vigilance and proven technology such as context-aware access controls, comprehensive blacklisting and whitelisting, read-only access, automated deprovisioning and adequate back-up are some of the vital components that need to be put in place by these trusts to both prevent and combat this problem as efficiently as possible.”

The healthcare industry has found itself becoming an increasingly attractive target for cyber criminals. A similar report released in October highlighted the prevalence of ransomware attacks on NHS organisations, before England’s largest NHS Trust suffered a cyber attack of its own.

A combination of poor security training, weak IT security measures and the use of outdated software are making hospitals soft target for attackers, putting operations and patient data at risk.

Silicon has contacted the Department for Health for comment.

Quiz: Test your knowledge of cyber security in 2016!

Sam Pudwell

Sam Pudwell joined Silicon UK as a reporter in December 2016. As well as being the resident Cloud aficionado, he covers areas such as cyber security, government IT and sports technology, with the aim of going to as many events as possible.

Recent Posts

Hong Kong Research Group Trains AI Model With Huawei Chips

Hong Kong-based AI research institute uses Huawei Ascend 910B chips to train latest model, as…

46 seconds ago

Investors Shocked As Temu Parent Misses Estimates

Temu and Pinduoduo parent company PDD Holdings misses analysts' estimates as economic slowdown in China…

30 mins ago

Apple, Google Mobile Ecosystems Should Be Investigated, CMA Told

CMA receives 'provisional recommendation' from independent inquiry that Apple,Google mobile ecosystem needs investigation

3 days ago

Australia Rejects Elon Musk Claim About Social Media Ban For Under-16s

Government minister flatly rejects Elon Musk's “unsurprising” allegation that Australian government seeks control of Internet…

3 days ago

Northvolt Files For Bankruptcy Protection In US

Northvolt files for Chapter 11 bankruptcy protection in the United States, and CEO and co-founder…

3 days ago

UK’s CMA Readies Cloud Sector “Behavioural” Remedies – Report

Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector

4 days ago