Britain ‘as sure as possible’ that North Korea perpetrated WannaCry cyber-attack

Britain’s security minister has blamed North Korea for the ransomware outbreak that wreaked havoc on NHS services earlier this year.

Ben Wallace said in an interview with the BBC that the Home Office was “as sure as possible” that Pyongyang was behind the global WannaCry cyber-attack that affected more than a third of NHS trusts in England in May.

In a radio interview on 27 October, Wallace said: “This attack, we believe quite strongly, came from a foreign state. North Korea was the state that we believe was involved this world-wide attack.”

Wallace also suggested that other nations had reached the same conclusion. “I can’t obviously go into the detailed intelligence, but it is widely believed in the community and across a number of countries that North Korea had taken this role,” he said.

A report from the National Audit Office (NAO) last week found that at least 81 of the 236 NHS trusts in England were disrupted by the WannaCry cyber-attack, which locked staff out of medical equipment and led to the cancellation of some 19,494 appointments.

The NAO investigation concluded that the cyber-attack’s impact on the NHS could have been prevented had it followed basic IT security protocols, such as keeping computer software up-to-date and maintaining security firewalls.

The NHS was also criticised heavily for the way it handled communication during the outbreak of the attack – specifically that it took several hours for NHS Digital to publicly acknowledge that a cyber-attack had taken place.

Britain’s National Health Service wasn’t the only organisation affected by the ransomware attack, which spread to more than 100 countries and affected some 200,000 IT systems worldwide.

Andy Barratt, UK managing director at cybersecurity consultancy firm Coalfire, told Digital Health News: “An important lesson to learn from the NHS hack is how strategically valuable a target public sector orgnisation can be.”

“The high regard that institutions like this are held in makes them a very attractive target to those wishing to undermine the government, particularly as we are now reasonably confident that another nation state carried out the attack.”

“Public sector organisations like the NHS will always be a magnet for cyber criminals so it’s vital that the correct protocols are put in place and adequate investment in security afforded.”

The NHS has since announced an extra £21 million in funding to improve its defences against future cyber-attacks and has established the Care Computer Emergency Response Team (CareCERT), which offers advice and guidance to health organisations dealing with cybersecurity threats.