Date lodged: 28 August 2017
To ask the Scottish Government, in light of the malware incident that reportedly affected NHS Lanarkshire on 25 August 2017, whether it has provided the board with additional funding in 2017 to tackle cyber-attacks and improve resilience against future incidents.
Answered by: Shona Robison 14 September 2017
The malware incident that affected NHS Lanarkshire on 25 August 2017 has been identified as a new variant of Bitpaymer ransomware. This malware incident is considered a zero day attack in that the new variant was released on the same day the actual attack takes place so no anti-virus software is available to protect against the attack.
Locally NHS Lanarkshire have invested themselves in a range of prioritised, mitigating IT security controls, such as better rollout of patches and anti-virus software which they have put in place and further actions are now being developed , such as replacing firewalls, which will increase the robustness of NHS Lanarkshire cyber security.
In additional NHS Lanarkshire has increased the number of skilled cyber security and IT resources by 8, including 3 additional security skilled staff.