The NHS is facing increased risks of cyber breaches due to ageing IT equipment and infrastructure, with experts warning of the potential for more damaging incidents similar to the ransomware attack on Synnovis. Ciaran Martin, the former chief executive of the NCSC, expressed his concerns about the outdated IT systems within the NHS, highlighting the need for better identification and mitigation of vulnerabilities.
A report by the BMA revealed that clinicians were losing millions of hours each year due to inadequate IT systems, with a majority of doctors agreeing that improving IT infrastructure would help alleviate the backlog of medical procedures. Despite significant investments in cyber security, concerns remain about overlooked basics such as multi-factor authentication.
Recent whistleblowers raised concerns about the potential exposure of sensitive data through NHS England’s ORP, prompting calls for stronger security measures to protect patient information. Experts emphasized the importance of implementing multiple security controls, including identity security, to prevent breaches and detect suspicious activity within healthcare organizations.