Translate

Thursday, 9 June 2011

Computer hackers have penetrated NHS systems, triggering fears that the security of highly sensitive patient records is at risk.



The hackers are part of the same online gang that recently hacked into electronics giant Sony, accessing the images of a million users. 

The self-styled 'pirate ninjas', known as Lulz Security, sent a warning to the NHS that its computer networks were vulnerable to cyber attack.


The self-styled 'pirate ninjas', known as Lulz Security, sent a warning to the NHS that its computer networks were vulnerable to cyber attack. 

In an email to health staff, hackers gave evidence of some of the passwords, saying: 'While you aren't considered an enemy - your work is of course brilliant - we did stumble upon several of your admin passwords.'

The hackers added: 'We mean you no harm and only want to help you fix your tech issues.' 

Their warning was relayed on Twitter - but with sensitive passwords blacked out.

Health officials have played down the security lapse, insisting it affected only local systems and that no patient records were accessed.

But they immediately issued emergency instructions to NHS systems administrators on how to protect IT systems. 


Health officials have played down the security lapse, insisting it affected only local systems and that no patient records were accessed (file picture)

Politicians and campaigners warned that the security breach showed how vulnerable the NHS was to data leaks.

Government plans to put all patients into a centralised database have already been condemned by the National Audit Office.

The £11.4billion IT system was declared a disaster by experts, who warned it would not provide value for money.

 

Tory MP Richard Bacon, a member of the Public Accounts Committee, said: 'This highlights a very serious problem which the NHS and Department of Health seem to have downplayed.

'It also points to further danger as we move towards centralised medical records. It will concern millions of people who want their records to be in safe hands.'

Daniel Hamilton, of campaign group Big Brother Watch, said: 'The NHS has had plenty of warning that security is not up to scratch; this should not have been possible in the first place.

'It is another nail in the coffin of the case for centralising patient records.'

But the Department of Health denied that any patient information was at risk.

A spokesman said: 'This is a local issue affecting a very small number of website administrators. No patient information has been compromised.

'No national NHS information systems have been affected. The department has issued guidance to the local NHS about how to protect and secure all their information assets.'

Earlier this month, Lulz Security hackers claimed they had broken into servers run by SonyPictures.com, accessing the details of a million users.

The group, known as LulzSec, said it had also hacked into Nintendo's website.

Chancellor George Osborne and Defence Secretary Liam Fox have warned of a higher threat from hacking in recent weeks.

More than 20,000 malicious emails are targeted at UK government networks every month, Mr Osborne said.

 

0 comments:

LinkWithin

Related Posts Plugin for WordPress, Blogger...