News

Healthcare and NHS IT

• December 12, 2022 12 Dec'22

  IR35: HMRC claims ‘potential’ legislative change in pipeline to address settlement offset issue

  HMRC claims work on a ‘potential legislative solution’ is underway to ensure it does not collect more tax than is due when end-user organisations are found to have made errors in determining the IR35 status of their contractors

• December 09, 2022 09 Dec'22

  Iranian APT seen exploiting GitHub repository as C2 mechanism

  A subgroup of the Iran-linked Cobalt Mirage APT group has been caught taking advantage of the GitHub open source project as a means to operate its latest custom malware

• December 08, 2022 08 Dec'22

  Apple to tap third party for physical security keys

  Apple is launching a number of new security protections, including the addition of third-party-provided hardware security keys

• December 07, 2022 07 Dec'22

  Clinicians who raised patient safety risks claim Berkshire NHS trust deleted email evidence

  A tribunal hearing considering claims that an NHS trust destroyed email evidence and had put the safety of geriatric patients at risk, was cut short after clinicians faced “life-changing” costs

• December 06, 2022 06 Dec'22

  Don’t become an unwitting tool in Russia’s cyber war

  Researchers have turned up evidence that enterprise networks are being co-opted by Russian threat actors to launch attacks against targets in Ukraine. How can you avoid becoming an unwitting tool in a state-backed attack?

• November 30, 2022 30 Nov'22

  Latest LockBit ransomware versions have wormable capabilities

  Sophos researchers have reverse-engineered the Lockbit 3.0 ransomware, shedding new light on its evolving capabilities and firming up links with BlackMatter

• November 30, 2022 30 Nov'22

  NIS regulations to be extended to cover MSPs

  The UK government is moving ahead with plans to update the Network and Information Systems regulations to bring outsourcers and MSPs into scope

• November 30, 2022 30 Nov'22

  Scotland launches national digital platform for health and care

  The online platform aims to give people access to their health and social care data, as well as provide staff with access to data to inform decisions about care

• November 25, 2022 25 Nov'22

  Data management, backup becoming the CISO's responsibility

  More and more CISOs are taking on responsibility for wider data management strategies, and this trend looks set to grow next year

• November 25, 2022 25 Nov'22

  Wales launches beta version of its own NHS app

  NHS Wales has begun trialling the beta version of its patient-facing app ahead of plans for a full launch next year

• November 23, 2022 23 Nov'22

  South Korea data adequacy pact brings £15m Brexit bonus

  UK government finalises a data adequacy agreement with South Korea, saying it will unlock a post-Brexit business bonus of just under £15m

• November 22, 2022 22 Nov'22

  Government launches AI-focused green innovation programme

  The Department for Business, Energy and Industrial Strategy claims the programme will not only help the UK achieve its net-zero goals, but may also help bring down energy costs

• November 22, 2022 22 Nov'22

  Ducktail spins new tales to hijack Facebook Business accounts

  The increasingly active Ducktail cyber crime operation is refining its operations, seeking new methods to compromise its victims’ Facebook Business accounts

• November 22, 2022 22 Nov'22

  Killnet DDoS hacktivists target Royal Family and others

  Russia-aligned hacktivists targeted multiple UK websites, including those of the Royal Family, in a new campaign of DDoS attacks

• November 22, 2022 22 Nov'22

  C-suite mystified by cyber security jargon

  Malware, supply chain attack, zero-day, IoC, TTP and Mitre ATT&CK are just some of the everyday terms that security pros use that risk making the world of cyber incomprehensible to outsiders

• November 21, 2022 21 Nov'22

  Genome lab puts Vast Data’s rapid I/O to work on patient data

  French government-backed SeqOIA ditched its Lustre-based storage after it reached performance limits and files got corrupted. That got fixed by a Vast Data QLC flash-based array

• November 21, 2022 21 Nov'22

  NHS federated data platform must avoid repeating Care.data mistakes, says national data guardian

  UK’s national data guardian agrees with the ambitions of the platform, but warns that the programme must avoid ‘common pitfalls around trust and transparency’

• November 21, 2022 21 Nov'22

  NHS trust that deleted up to 90,000 emails cleared of deliberately concealing evidence

  A tribunal found in a high-profile case brought by whistleblower Chris Day that an NHS trust had not deliberately concealed evidence when a director deleted up to 90,000 emails before he was due to testify

• November 18, 2022 18 Nov'22

  Is Elon Musk’s Twitter safe, and should you stop using it?

  With a litany of security and compliance issues exposed and in many cases caused by Elon Musk’s takeover of social media platform Twitter, some may be asking if it’s still safe or appropriate to use

• November 17, 2022 17 Nov'22

  Brexit deregulation will make UK next Silicon Valley, vows Hunt

  Chancellor vows to revolutionise how the IT industry is regulated to spur competition, investment and innovation in a technological ‘Big Bang’

• November 17, 2022 17 Nov'22

  Another Log4Shell warning after Iranian attack on US government

  The breach of a US federal body by an Iranian threat actor exploiting the Adobe Log4j Log4Shell vulnerability has prompted a fresh flurry of patching

• November 17, 2022 17 Nov'22

  Scottish government to pilot digital identity platform in early 2023

  Pilot of Scotland’s digital identity platform will be run in partnership with Disclosure Scotland, using secure sign-on and identity verification

• November 17, 2022 17 Nov'22

  NHS Digital confirms final settlement of £3.95m with HMRC following conclusion of IR35 investigation

  The health service’s digital arm has paid HMRC £3.95m in unpaid tax to cover the cost of its IR35 compliance errors

• November 16, 2022 16 Nov'22

  Global network fragmentation a source of increasing risk

  Risk consultancy’s report says the weaponisation of cyber space and geopolitical clashes herald a breakdown of global networks into distinct regional or national architectures

• November 15, 2022 15 Nov'22

  Commoditisation of NHS tech is a problem, says NHS Digital interim CEO

  NHS Digital interim CEO Simon Bolton calls for a stronger mandate from the centre around the systems in use in the NHS, with no more than four to six electronic patient record systems used across the country

• November 15, 2022 15 Nov'22

  NHS Scotland extends video consultation scheme

  The Scottish Near Me video consultation platform can now be used in community settings such as libraries and health and care centres for GP appointments, hospital appointments, care homes, dietetics and mental health support

• November 11, 2022 11 Nov'22

  Volume of self-reported breaches to ICO jumps 30%

  The number of self-reported breaches to the UK’s Information Commissioner’s Office soared by nearly 30% in the 12 months to 30 June 2022

• November 11, 2022 11 Nov'22

  17 West Midlands NHS trusts deploy digital pathology

  Trusts hope digital pathology programme will transform cancer diagnosis in the region and reduce backlogs

• November 09, 2022 09 Nov'22

  Microsoft serves smorgasbord of six zero-days

  November’s Patch Tuesday fixes significantly fewer vulnerabilities of late, but includes six actively-exploited zero-days, three of them of critical severity

• November 04, 2022 04 Nov'22

  Microsoft: Nation-state cyber attacks became increasingly destructive in 2022

  The willingness of nation-state actors to conduct destructive cyber attacks is a source of grave concern, as Microsoft’s latest annual Digital Defence Report lays bare

• November 03, 2022 03 Nov'22

  Microsoft pledges $100m in new IT support for Ukraine

  Microsoft will continue to offer free-of-charge technology support to Ukraine for the foreseeable future

• November 03, 2022 03 Nov'22

  All NHS staff should have basic AI training, says report

  A report by the NHS AI Lab and Health Education England calls for all health and care staff to receive training in artificial intelligence as the technology will be increasingly adopted in healthcare practice

• November 02, 2022 02 Nov'22

  UK spent £6.4m on secret cyber package for Ukraine

  Westminster has revealed for the first time the existence of a previously top-secret security programme that has been helping Ukraine fend off Russian cyber attacks

• November 01, 2022 01 Nov'22

  A third of UK cyber leaders want to quit, report says

  Nearly a third of UK security leaders are considering leaving their current role, and more than half are struggling to keep on top of their workload

• November 01, 2022 01 Nov'22

  Scotland’s Data Lab CEO Brian Hills on its ambition to change lives

  Brian Hills, chief executive of The Data Lab in Scotland, on why he thinks the organisation’s mission is less about data and more about changing lives by giving people career opportunities

• October 31, 2022 31 Oct'22

  Prepare today for potentially high-impact OpenSSL bug

  OpenSSL trailed a critical vulnerability patch last week, which will be only the second such flaw ever found in the open source encryption project. Unfortunately, the first was Heartbleed

• October 27, 2022 27 Oct'22

  NHS to get new national CISO

  The Department for Health and Social Care is seeking a new national CISO, who will be tasked with providing strategic cyber leadership, direction and expertise across DHSC and the wider NHS

• October 27, 2022 27 Oct'22

  LinkedIn adds new features to safeguard user privacy, security

  Social media platform is adding a number of features and systems designed to protect legitimate users from inauthentic profiles and activity

• October 26, 2022 26 Oct'22

  UKCloud in liquidation: Troubled public sector cloud provider hit with winding up order

  Public sector sovereign cloud provider served with winding-up order nine months after an acquisition that was intended to address a £30m funding shortfall at the firm

• October 25, 2022 25 Oct'22

  Apple patches new iPhone zero-day

  Apple’s latest patch fixes yet another zero-day, as security issues keep surfacing in its mobile products

• October 24, 2022 24 Oct'22

  Government speeds up NHS Digital and NHS England merger

  NHS bodies will now merge in early January 2023, aiming to create a single statutory body for NHS data and technology

• October 24, 2022 24 Oct'22

  Half of staff might quit after a cyber attack, report says

  Findings from a survey of CISOs, IT leaders and staffers reveal how experiencing a cyber incident may take a larger-than-thought toll on employee retention

• October 21, 2022 21 Oct'22

  Ukrainian and UK IT sectors to deepen collaboration, partnerships

  BCS, the Chartered Institute for IT, and the IT Ukraine Association have signed an MoU to deepen collaboration between the UK and Ukrainian IT sectors, and champion new partnerships and growth opportunities

• October 20, 2022 20 Oct'22

  Cyber professional shortfall hits 3.4 million

  Shortage of cyber security professionals continues to grow and shows no signs of abating, says report

• October 20, 2022 20 Oct'22

  Singapore extends cyber security labelling scheme to medical devices

  The Cyber Security Agency of Singapore is extending its cyber security labelling scheme to medical devices to encourage medical device manufacturers to adopt a security-by-design approach to product development

• October 19, 2022 19 Oct'22

  Oracle CloudWorld 2022: Ellison vaunts centrality of healthcare to mission

  Oracle CTO Larry Ellison put the company’s healthcare initiatives front and centre of its vision during his keynote at Oracle CloudWorld 2022 in Las Vegas

• October 19, 2022 19 Oct'22

  Treat cyber crime as a ‘strategic threat’, UK businesses told

  The government’s new National Cyber Advisory Board aims to help elevate cyber discussion and spur action in the business community

• October 17, 2022 17 Oct'22

  Government u-turns on plans to scrap IR35 reforms in public and private sector from April 2023

  Chancellor Jeremy Hunt confirms that the planned repeal of the IR35 reforms in the public and private sector is cancelled

• October 14, 2022 14 Oct'22

  Office 365 email encryption flaw could pose risk to user privacy

  A vulnerability in Microsoft Office 365 Message Encryption could leave the contents of emails dangerously exposed, but with no fix coming it’s up to users to decide how at risk they are

• October 14, 2022 14 Oct'22

  Advanced: Healthcare data was stolen in LockBit 3.0 attack

  Advanced has revealed a total of 16 of its health and social care sector customers had their data exfiltrated in a recent ransomware attack