Be safe! Take care of your cyber security
We know that the security of your practice IT systems is often out of your hands. However, we have put together some tips that may help you secure your systems following the ‘WannaCry’ attack on the NHS earlier this month.
Back up and update
Make sure you have effective backups of data on an external hard drive or cloud-based service and ensure all devices are regularly updated.
Beware of spam emails
Ransomware attacks usually rely on an end-user activating them, normally by opening an email attachment. Educate the practice team and ensure that they question who or where emails come from on a regular basis. Ensure this is covered in any staff inductions.
Make sure the team regularly change their passwords and using a mixture of upper and lower case letters, numbers and symbols.
The National Cyber Security Centre has produced some helpful guidance on dealing with a ransomware attack.
Have a disaster recovery plan
You should have a disaster recovery plan in place which outlines what the team should do in the event of an attack. Also, ensure that cybersecurity is discussed at every practice team meeting. The plan should include details on how to disconnect infected devices from the network as well as how the practice may work whilst systems are restored.
Read the RCGP’s ‘advice for GP practices following cyber-attacks on their systems’ for further information.
Plan a response
Advice from Practice Index states:
“In the absence of IT specialists – which is the case for most practices – it’s up to ‘leaders’, which will usually be a practice manager, to determine an effective cause of action in the event of an attack, and educate staff to prepare for them.”
What this means in essence is that the practice should have a strong cyber security response plan with clear definitions of how data can be recovered as well as roles and responsibilities within the practice team. Read the UK government’s 10 steps to cybersecurity for further advice.
Unfortunately, cybercrime is a fact of life today and it’s only a matter time before the next attack takes place.
These tips will hopefully help you to take a few simple steps towards making cybersecurity part of your practice culture so you can minimise the chances of any future attacks and the damage they may cause.
Last updated : 21 Jun 2017BMA seek feedback on NHSPS leases without service charges (18 Dec 2018)
The BMA would like to speak to practices in in NHS Property Services premises who have: Written leases without service charge provisions where no payments have historically been made...NHS England and CCGs investigating half-day closing sub-contracting arrangements (18 Dec 2018)
NHS England and various London CCGs have been carrying out analysis of practices’ opening hours based on the information provided in their E-Declarations. Some commissioners have identified practices who have...General Practice Indicators module on the NHS England primary care website updated. (17 Dec 2018)
NHS England have recently updated eight indicators in the General Practice Indicators module on www.primarycare.nhs.uk. The eight indicators which have been updated relate to: Cervical screening to 2017/18...ICO fines for practices who do not pay their registration fees (17 Dec 2018)
From 25 May 2018, the Data Protection (Charges and Information) Regulations 2018 required every organisation or sole trader who processes personal information to pay a data protection fee to the...Tips of the month December 2018 (17 Dec 2018)
We provide weekly tips based on common queries which come through to us from London GPs and practice teams. These are shared via social media and collated for...Practice Managers Conference 2018 summary (17 Dec 2018)
The Practice Managers Conference was attended by dozens of delegates from across the Londonwide area. Delegates said they enjoyed the day, particularly the opportunity to meet other PMs and learn...The Data Security and Protection Toolkit (DSPT) – submission deadline 31 March 2019. (17 Dec 2018)
The Data Security and Protection Toolkit (DSPT) replaced the Information Governance toolkit from April 2018. The DSPT is an online self-assessment toolkit that has to be used by all organisations...Thank you for responding to our workforce survey (13 Dec 2018)
Thank you to everyone who took the time to complete our workforce survey, which closed last week. The data gathered from previous workforce surveys has been used in a number...Motions sought for national LMC conference (07 Dec 2018)
We are seeking draft motions for the UK LMC conference before Christmas, so we have time to submit them in early January. If you are an LMC member please speak...Guidance
We provide expert guidance for practices in our guidance section, as well as an archive of other materials you may find useful.
GP Support
Contact our GP Support team if you need help or advice.
The team provide professional and pastoral support to GPs and practice teams on a broad range of issues.
follow us on...
