NHS Must Take Urgent Steps to Defend Against Hackers, Says White Paper (Jul 6, 2019)
Researchers from Imperial College London’s Institute of Global Health Innovation have published a white paper discussing risk posed to the National Health Service (NHS). The paper contends that NHS hospitals are vulnerable to threat actors due to a combination of lack of awareness, investment, and skills, in addition to the use of outdated systems. The researchers also suggest that while their report discusses the NHS, the overall position of healthcare systems around the globe remain vulnerable to cyberattacks.
Recommendation: It is crucial that your company ensure that hardware and software in use are always running the most current software version. Your company should have policies in place in regards to the proper configurations needed for your systems to conduct your business needs safely. In addition, policies should be in place in regards to Bring-Your-Own-Device (BYOD) to consider every IoT device as a potential security liability. Furthermore, always practice Defense-in-Depth (do not rely on single security mechanisms - security measures should be layered, redundant, and failsafe).
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.