WARNING HACKERS WILL HIT UK AGAIN TODAY
NHS and 120 Scots public bodies on red alert over fears of new wave of computer attacks
THE U K is on high alert amid fears the computer virus that paralysed the NHS could strike again. Public bodies, businesses and homes are though to be at risk of being hit by ‘significant’ new cases.
The National Cyber Security Centre (NCSC) warned that the ransomware attack that caused chaos on Friday could ‘recur’ as the nation heads back to work today.
The organisation spearheads Britain’s efforts to fend off all potentially devastating cyberattacks from hostile states, terror groups and malicious hackers – socalled ‘hacktavists’. The warning
comes as authorities in Scotland issued a country-wide security crackdown that will see more than 120 bodies in the police, fire, health and public sectors given tough new guidelines to stave off another attack.
They will work with the NCSC after 13 of Scotland’s 14 health boards suffered disruption after being targeted last week.
As the authorities faced further questions over cyber-security systems last night:
Europol chief Rob Wainwright warned of a second wave of attacks after hackers released a new version of the ransomware, overcoming a temporary fix that slowed down its spread;
The number affected by the global hack rose to 200,000 victims in 150 countries;
A major manhunt was under way as crime organisations from around the world sought the attackers, thought to be part of Eastern European gangs;
Although no personal data has been lost, Britons’ privacy could be under threat, with a damning report revealing personal information held by Government departments is breached at least once an hour.
In a dire warning about repeat strikes, the NCSC said: ‘The way these attacks work means that compromises of machines and networks that have already occurred may not yet have been detected, and that existing infections from the malware can spread within networks.
‘As a new working week begins, it is likely, in the UK and elsewhere, that further cases of ransomware may come to light, possibly at a significant scale.
‘It is possible a ransomware attack of this type and on this scale could recur.’
Chancellor Philip Hammond warned in February that significant cyber-attacks were increasing in frequency, with 188 foiled in only three months.
Experts have warned the typical cost to business of the most severe information security breaches had nearly tripled in a year from £1.1million to £3.1million.
Havoc was wreaked across the NHS – 48 NHS trusts in England and 13 Scottish health boards were affected, only weeks after MPs warned that Whitehall departments were at risk.
A report by the Commons’ Public Accounts Committee (PAC) found personal information held by Government ministries was being breached at least once an hour.
It found insufficient measures were in place to tackle the problem of sensitive data being lost, wrongly shared or hacked – potentially leading to ‘significant harm’.
Poor reporting of low-level breaches – such as letters or emails containing personal details being sent to the wrong person – reduces confidence in ministers’ ability ‘to protect the nation from higher threat cyber-attacks’. There were 8,995 data breaches in the 17 largest Whitehall departments in 2015 – a staggering 24 a day. Some 98 per cent were at HM Revenue and Customs and the Ministry of Justice.
In some cases, a single breach would involve the disappearance, theft or inappropriate sharing of personal information of hundreds or thousands of people.
The threat from cyber-attacks has been one of the UK’s top four risks to national security since 2010. Amid concerns that the Trident nuclear deterrent was vulnerable, Sir Michael Fallon yesterday told the BBC’s Andrew Marr Show: ‘We never comment on the different systems, obviously for reasons of security, that our submarines use but our Vanguard submarines, I can absolutely assure you, are safe and operate in isolation when they are out on patrol. The nuclear deterrent is fully protected.’
Meanwhile yesterday, Justice Secretary Michael Matheson said: ‘Friday’s attack has highlighted the need for everyone to have appropriate and robust measures in place to protect against cyberattacks, which could strike any IT system at any time.
‘NHS Scotland systems are being recovered; we expect them to have returned to normal by Monday. There is no evidence that patient data has been compromised. Patients who have appointments booked for Monday and beyond should attend as planned.
‘The Scottish Government is taking action to enhance security, including contacting over 120 public bodies to ensure they have appropriate defences in place.’
As part of the security crackdown, designed to ‘enhance Scotland’s cyber resilience’, officials are working with the NCSC.
Ministers will convene a meeting of the National Cyber Resilience Leaders’ Board tomorrow to review the circumstances that led to the attack, the multi-agency responses and steps that should be taken to enhance future resilience.
Mr Matheson said: ‘One of the most common methods of infecting computer systems is through links and attachments in emails. Think twice before clicking on attachments or links from sources [you] don’t know.
‘Police Scotland has been working closely with the National Crime Agency, who are leading the UKwide law enforcement investigative response.’
The ‘Wanna Decryptor’ virus exploits a vulnerability in Microsoft systems that was discovered and developed by the US National Security Agency. The key to exploiting this was leaked by the Shadow Brokers hacker group.
Microsoft in March developed a ‘patch’ which protects against the hack – but experts said few NHS organisations had downloaded it.
‘Nuclear deterrent is protected’