Cyber Attack On NHS Software Services

British NHS 111 medical staff nationwide were left using pens and paper after a major cyber attack was carried out over the weekend. People seeking medical help via the service are being warned of delays due to a “major” computer system outage caused by the attack which affected the phone service and referrals to out-of-hours GPs.

The system was shut down by hackers thought to be linked to a hostile state and cyber crime experts have been drafted in to investigate.

Advanced, a firm providing digital services for NHS 111, said the attack was spotted at 07:00 on Thursday 4th August. The attack targeted the system used to refer patients for care, including ambulances being dispatched, out-of-hour appointment bookings and emergency prescriptions.

The British National Crime Agency said it was "aware of a cyber incident" and was working with Advanced. "A security issue was identified yesterday, which resulted in a loss of service. We can confirm that the incident is related to a cyber attack and as a precaution, we immediately isolated all our health and care environments. Early intervention from our Incident Response Team contained this issue to a small number of servers representing 2% of our Health & Care infrastructure." an Advanced spokesman said

Advanced suggested the issue might not be fully resolved until next week and family doctors in London were warned by NHS England they could see an increased number of patients sent to them by NHS 111 due to the severe technical issue. It said a letter to GPs in the capital stated the problem was affecting the electronic referral process for patients.

Officials believe the fallout will last until Tuesday at the earliest, with the public told there will be delays when ringing the hotline.

It’s feared disruption could drive patients to overstretched accident and emergency departments over the weekend. An NHS England spokesperson said there was currently minimal disruption, and it was monitoring the situation. "NHS 111 services are still available for patients who are unwell, but if it is an emergency please call 999," they said.  

  • The Isle of Wight NHS Trust declared a critical incident in response to ‘sustained pressure’ on its A&E services. 
  • The Welsh Ambulance Service warned it may take longer for calls to be answered over the weekend. It said: "There is a major outage of a computer system that is used to refer patients from NHS 111 Wales to out-of-hours GP providers.
  • A Scottish Government spokesperson said it was aware of reported disruption to one of NHS Scotland's IT suppliers' systems and is "working with all health boards collaboratively on a four nations basis with the National Cyber Security Centre and the supplier to fully understand potential impact".
  • A spokesperson for Northern Ireland's Department of Health said they are working to keep disruption to a minimum. "As a precaution, to avoid risk to other critical systems and services, access to the company's services from the HSC (Health and Social Care system) has been disabled, while the incident is contained," they said.

Commenting on the attack Ross Brewer of enterprise cyber security platform AttackIQ said, ‘’This latest breach bringing the NHS 111 service to its knees is yet another example of an IT supplier being used to gain access in order to bring down critical national infrastructure...  While the specific details in this case are still developing, typically compromises of suppliers are used as an entry point to gain access to the target organisation or the service a supplier may be running on their behalf."

Regardless of the entry point, organisations should have protection and detection mechanisms to stop such intrusions developing into a catastrophic service failure, according to Brewer.

"In the case of cloud services hosted by the third party suppliers, the provider should have similar protections. To often not enough testing of people, processes and technology is taking place to validate an organisation’s cyber security readiness." he added.

An NHS spokesperson said “There is currently minimal disruption, and the NHS will continue to monitor the situation as it works with Advanced to resolve their software system as quickly as possible, tried and tested contingency plans are in place for local areas who use this service.”    

 Pulse Today:     HSToday:     BBC:    Guardian:     Independent:     Metro:   STV:     LBC: 

You Might Also Read: 

Ireland’s Health Service Won't Pay Ransom:
 

« AI Driven Anomaly Detection In The Oil & Gas Industry
Taiwan's Government Websites Attacked Just Before Pelosi’s Visit »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

SecuriThings

SecuriThings

SecuriThings is a User and Entity Behavioral Analytics (UEBA) solution for IoT security.

Assuria

Assuria

Assuria Cyber Security solutions provide protective monitoring of systems and user activity across the whole IT infrastructure.

Mixed Mode

Mixed Mode

Mixed Mode is a specialist in embedded and software engineering for applications including IoT and secure embedded systems.

CyberTrap

CyberTrap

CyberTrap is an advanced highly-interactive deception technology allowing real-time analysis and control of security breaches.

Forensic Pathways

Forensic Pathways

Forensic Pathways focus on the provision of digital forensic technologies, offering clients unique technologies in the management of mobile phone data, image analysis and ballistics analysis.

Belkasoft

Belkasoft

Belkasoft is a software vendor providing public agencies, corporate security teams, and private investigators with digital forensic solutions.

ICS Cyber Security Conference

ICS Cyber Security Conference

SecurityWeek’s Industrial Control Systems (ICS) Cyber Security Conference is the largest and longest-running event series focused on industrial cybersecurity.

Sum&Substance (Sumsub)

Sum&Substance (Sumsub)

Sum&Substance is a developer of remote verification solutions. Our technology allows online services around the world to meet regulatory requirements, prevent fraud and enhance customer confidence.

Global Cyber Security Capacity Centre (GCSCC) - Oxford University

Global Cyber Security Capacity Centre (GCSCC) - Oxford University

GCSCC's work is focused on developing a framework for understanding what works, what doesn’t work and why – across all areas of cybersecurity capacity.

ShieldApps

ShieldApps

ShieldApps comprehensive suite of products is designed to protect your personal devices from privacy threats, including hacking attempts, online tracking, fingerprinting, phishing, malware, and more.

Labaton Sucharow

Labaton Sucharow

Standing on the horizon of law and technology, our Cybersecurity and Data Privacy Practice helps to protect consumers who have been harmed by businesses’ failures to safeguard their customers' data.

Mantodea Security

Mantodea Security

Mantodea Security is an industry-agnostic powerhouse backed by extensive experience and expertise in the realm of IT security.

Icon Information Systems (ICONIS)

Icon Information Systems (ICONIS)

ICONIS is an integrated infrastructure and service provider, offering unified Information Technology (IT) solutions globally.

Hubble

Hubble

Hubble grew from the idea that legacy solutions were failing to provide organizations with the asset visibility they needed to effectively secure and operate their businesses.

CyberGrape

CyberGrape

CyberGrape is a client centric managed services company, providing enterprise leading security solutions and helping companies through their IT risk and security challenges.

Cyro Cyber

Cyro Cyber

Cyro Cyber is a collective of some of the UK’s most experienced and savvy cybersecurity, information assurance, data protection, IT governance and compliance experts.