HOW DID THE 2017 WANNACRY CYBER ATTACK CRIPPLE THE NHS?

More than a third of hospital trusts had their systems crippled in the WannaCry ransomware attack in May 2017.

Nearly 20,000 hospital appointments were cancelled because the NHS failed to provide basic security against cyber attackers.

NHS officials claimed 47 trusts were affected – but the National Audit Office (NAO) found the impact was far greater, and in fact 81 were hit by the attack.

When the attack started on May 12, it ripped through the out-of-date defences used by the NHS.

More than a third of hospital trusts had their systems crippled in the WannaCry ransomware attack last May

More than a third of hospital trusts had their systems crippled in the WannaCry ransomware attack last May

The virus, which spread via email, locked staff out of their computers and demanded £230 to release the files on each employee account.

Hospital staff reported seeing computers go down 'one by one' as the attack took hold. 

Locked out medics had to rely on pen and paper, while crucial equipment such as MRI machines were also disabled by the attack.

The report reveals nearly 19,500 medical appointments were cancelled, including 139 potential cancer referrals. Five hospitals even had to divert ambulances away at the peak of the crisis.

Hospitals were found to have been running out-of-date computer systems, such as Windows XP and Windows 7, that had not been updated to secure them against such attacks. Computers at almost 600 GP surgeries were also victims.

NAO claimed the cyber attack could have easily been prevented. Officials were warned repeatedly about the WannaCry virus beforehand, with 'critical alerts' being sent out in March and April.

Foreign Office minister Lord Ahmad confirmed the attack was carried out by the notorious North Korean cyber espionage group Lazarus. 

Computer systems in 150 countries were caught up in the incident, which saw screens freeze with a warning they would not be unlocked unless a ransom was paid. 

The Department of Health said that from January 2018 hospitals will be subject to unannounced inspections of IT security.  

Advertisement

Read articles that feature this panel

'They're a reminder I've tried to tackle it all, with the best attitude I can': Mother, 52, with incurable cancer who ballooned from a size...

Helen Heagren, from Essex, is batting incurable ovarian cancer. She says the size 22 knickers – from when she needed 17 litres drained from...

Patients told NOT to go to A&E as 'major incident' hits NHS computer systems - leaving doctors unable to access records

Patients are being told not to go to A&E after an NHS computer failure. The IT problem is currently affecting some of the busiest hospitals...

All of the UK's 200 NHS trusts have FAILED cyber security checks in the wake of North Korean-led WannaCry attack

NHS Digital deputy chief executive Rob Shaw told MPs that every NHS trust has failed cyber security checks, although work was ongoing to...

NHS spends as little as £238 per trust on cyber security and training despite WannaCry attack which cost the health service £92million and...

UK cyber security experts Redscan sent Freedom of Information requests to NHS trusts around the UK and found the amount they spend on IT...

Matt Hancock (Kirsty O´Connor/PA) NHS technology is less advanced than software used by TESCO, says Health Secretary Matt Hancock

Speaking at the London launch of a major report on preparing the health workforce for a digital future, he called for improvements in the...

Marcus Hutchins (R), seen ahead of a 2017 court appearance, was hailed as a hero for stemming the WannaCry ransomware outbreak but later charged in the US with creating malware that could attack the banking system British 'hero' hacker who helped stop worldwide WannaCry virus outbreak admits US charges of making malware to attack America's banking...

Marcus Hutchins, whose arrest in 2017 stunned the computer security community, pleaded guilty to criminal charges linked to his activity in...

WannaCry 'could happen again': The NHS remains vulnerable to cyber attacks because of its 'outdated computer systems, lack of investment and...

Imperial College London's Institute of Global Health Innovation raised the concerns in their White Paper on NHS Cyber Security.

NHS tells hospitals to shore-up cyber security amid fears Russian hackers may carry out WannaCry-style attack in retaliation for Ukraine...

Health chiefs have written to trusts in England telling them to make cybersecurity their 'focus'. The NHS was hacked in 2017 in the WannaCry...

Hackers issue 'ransom demands' to NHS IT supplier: Fears MILLIONS of confidential patient records could be leaked after major cyber attack

Hackers targeted IT firm Advanced, which provides patient data to dozens of trusts and most NHS 111 providers in England, which were thrown...

Data privacy fears as GPs are sharing patient records on Word documents via email following cyber attack - and they could be 'easily...

Advanced, a major IT provider to the health service, spotted a ransomware attack against NHS England last Thursday.

Fears China could cyber attack the NHS by exploiting software flaw that saw 'hostile' Beijing-backed actors access personal details of...

MPs have today blamed China for a series of serious cyberattacks on the British people and elected officials as IT security experts warn...