Healthcare and Pharmaceutical


  • MPs: A Year After WannaCry, NHS Must Take ‘Urgent’ Security Action

    April 18, 2018

    The NHS and the government have failed to act on lessons learned from the incident, Public Accounts Committee says MPs have criticised the government and the NHS for failing to put measures into place that could prevent attacks similar to the WannaCry malware incident nearly one year ago. WannaCry, which affected more than 200,000 computers in at least 100 countries, caused ...

  • Challenges in Securing Connected Hospitals

    April 5, 2018

    In our latest research paper on healthcare cybersecurity, Securing Connected Hospitals, which was produced in partnership with HITRUST, we examined internet-connected medical-related devices and systems such as databases, hospital admin consoles, and medical devices. We also looked into the supply chain, which has been an attack vector that is often overlooked. Based on our research into cyberthreats against hospitals, we ...

  • Boards should appoint lead on data security, NHS England review suggests

    February 5, 2018

    Organisations should appoint a board lead on data security and consider suspending IT access for any executive who fails to complete annual cybersecurity training, NHS England’s chief information officer has suggested. Will Smart makes the proposals in his “lessons learned” review of the WannaCry attack, which hit 35% of NHS trusts in May last year and led some to ...

  • Government warns critical industry firms to prepare for cyberattacks

    January 28, 2018

    Organisations are facing fines of up to £17m if they have ineffective cybersecurity measures in place to protect against hackers. Organisations involved in critical industry and essential services have been warned by the Government that they face £17m fines if their cybersecurity preparations are not up to standard. Energy, transport, water, health and digital infrastructure firms could ...