- Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
- Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!
Any of you worked on security for the NHS?
Collapse
X
-
Any of you worked on security for the NHS?
England's greatest sailor since Nelson lost the armada. -
Originally posted by Uncle Albert View Post
Without more details it's hard to say but it looks like a limited number of hospitals have been compromised due to local vulnerabilities. If it was really a systemic issue there would be a lot more affected."Being nice costs nothing and sometimes gets you extra bacon" - Pondlife. -
It might turn out that the fragmented nature of the trusts has helped limit it to only a few hospitals. It's worrying though that one trust with poor security could expose the national services that they access.England's greatest sailor since Nelson lost the armada.Comment
-
-
Originally posted by Uncle Albert View PostIt might turn out that the fragmented nature of the trusts has helped limit it to only a few hospitals. It's worrying though that one trust with poor security could expose the national services that they access.
There really isn't enough detail in the article but it sounds like a number of workstations used to access patient records and other systems have been infected with ransomeware. It's not even necessarily a targeted attack against the NHS, it could very well be coincidence as the bad guys tend to go for a scatter gun approach and simply scan swaths of IP addresses for open connections they can try and exploit.
If the local networks were poorly protected then that could lead to the infection. It only takes one device to be compromised and others on the local networks can also be attacked."Being nice costs nothing and sometimes gets you extra bacon" - Pondlife.Comment
-
Originally posted by stek View PostI was on Spine, I'd be very surprised if anyone got into that.
Much securities with plenty cheapness.....When freedom comes along, don't PISH in the water supply.....Comment
-
Originally posted by DaveB View PostIt's not as much of a risk as it might be. Access to national services requires authentication through a NHS Smart Card or other secure mechanisms. A compromised endpoint isn't automatically gong to lead to compromise of other remote services as it's not a generic network connection, but relies on the local application authentication to handle the connection.
There really isn't enough detail in the article but it sounds like a number of workstations used to access patient records and other systems have been infected with ransomeware. It's not even necessarily a targeted attack against the NHS, it could very well be coincidence as the bad guys tend to go for a scatter gun approach and simply scan swaths of IP addresses for open connections they can try and exploit.
If the local networks were poorly protected then that could lead to the infection. It only takes one device to be compromised and others on the local networks can also be attacked.Comment
-
So if they've managed to do that, what's to say they're not downloading all of the patient health records. A breach of that would be the largest ever.What happens in General, stays in General.You know what they say about assumptions!Comment
-
Originally posted by TestMangler View PostI'm assuming you don't mean that in a good way....
Much securities with plenty cheapness.....Comment
-
Originally posted by stek View PostI was on Spine, I'd be very surprised if anyone got into that."Being nice costs nothing and sometimes gets you extra bacon" - Pondlife.Comment
- Home
- News & Features
- First Timers
- IR35 / S660 / BN66
- Employee Benefit Trusts
- Agency Workers Regulations
- MSC Legislation
- Limited Companies
- Dividends
- Umbrella Company
- VAT / Flat Rate VAT
- Job News & Guides
- Money News & Guides
- Guide to Contracts
- Successful Contracting
- Contracting Overseas
- Contractor Calculators
- MVL
- Contractor Expenses
Advertisers
Contractor Services
CUK News
- Streamline Your Retirement with iSIPP: A Solution for Contractor Pensions Sep 1 09:13
- Making the most of pension lump sums: overview for contractors Sep 1 08:36
- Umbrella company tribunal cases are opening up; are your wages subject to unlawful deductions, too? Aug 31 08:38
- Contractors, relabelling 'labour' as 'services' to appear 'fully contracted out' won't dupe IR35 inspectors Aug 31 08:30
- How often does HMRC check tax returns? Aug 30 08:27
- Work-life balance as an IT contractor: 5 top tips from a tech recruiter Aug 30 08:20
- Autumn Statement 2023 tipped to prioritise mental health, in a boost for UK workplaces Aug 29 08:33
- Final reminder for contractors to respond to the umbrella consultation (closing today) Aug 29 08:09
- Top 5 most in demand cyber security contract roles Aug 25 08:38
- Changes to the right to request flexible working are incoming, but how will contractors be affected? Aug 24 08:25
Comment