Be safe! Take care of your cyber security
We know that the security of your practice IT systems is often out of your hands. However, we have put together some tips that may help you secure your systems following the ‘WannaCry’ attack on the NHS earlier this month.
Back up and update
Make sure you have effective backups of data on an external hard drive or cloud-based service and ensure all devices are regularly updated.
Beware of spam emails
Ransomware attacks usually rely on an end-user activating them, normally by opening an email attachment. Educate the practice team and ensure that they question who or where emails come from on a regular basis. Ensure this is covered in any staff inductions.
Make sure the team regularly change their passwords and using a mixture of upper and lower case letters, numbers and symbols.
The National Cyber Security Centre has produced some helpful guidance on dealing with a ransomware attack.
Have a disaster recovery plan
You should have a disaster recovery plan in place which outlines what the team should do in the event of an attack. Also, ensure that cybersecurity is discussed at every practice team meeting. The plan should include details on how to disconnect infected devices from the network as well as how the practice may work whilst systems are restored.
Read the RCGP’s ‘advice for GP practices following cyber-attacks on their systems’ for further information.
Plan a response
Advice from Practice Index states:
“In the absence of IT specialists – which is the case for most practices – it’s up to ‘leaders’, which will usually be a practice manager, to determine an effective cause of action in the event of an attack, and educate staff to prepare for them.”
What this means in essence is that the practice should have a strong cyber security response plan with clear definitions of how data can be recovered as well as roles and responsibilities within the practice team. Read the UK government’s 10 steps to cybersecurity for further advice.
Unfortunately, cybercrime is a fact of life today and it’s only a matter time before the next attack takes place.
These tips will hopefully help you to take a few simple steps towards making cybersecurity part of your practice culture so you can minimise the chances of any future attacks and the damage they may cause.
Last updated : 21 Jun 2017Londonwide Enterprise update (17 Aug 2016)
Practice managers conference and events Speakers have been confirmed for the Practice Manager Conference to be held at Woburn House on Thursday 22 September 2016. ‘Leadership through Change: making the...Patient engagement survey (17 Aug 2016)
We are asking for practices to share their experience of successfully developing their patient engagement work, including top tips, by completing our patient engagement surveys. These will help shape the...London Improvement Grant Fund 2017-18 (17 Aug 2016)
The London Improvement Grant Fund application process is now open. Practices need to submit their applications by 17:00 on Friday 30 September 2016 by emailing them to: England.LondonIGfund@nhs.net. Practices should...NHS England Update on Estates and Technology Transformation Fund (ETTF) (17 Aug 2016)
Unfortunately, information regarding submission dates for reimbursement claims for NHS England’s Estates and Technology Transformation Fund (ETTF) has caused some confusion. Please note that the submission date change is not related...New GPSoE Resources - Posters (16 Aug 2016)
We have produced two posters to help practices explain to patients and staff why we are in a state of emergency. One is for your waiting room and outlines the...Capita list cleanse plan (16 Aug 2016)
At the end of July it was reported that part of the new Primary Care Support Services contract between NHS England and Capita would include a list cleanse programme, designed...New requirements for hospitals re work with general practice (16 Aug 2016)
Londonwide LMCs’ CEO Dr Michelle Drage has written to Trust and Foundation Trust CEOs across London asking how they plan to implement the new requirements outlined in the 2016/17 NHS...General Practice Resilience Programme funding (16 Aug 2016)
£2.65m of resilience funding is available to London practices this financial year, as the Capital’s share of a £16m national pot, promised as part of the GP Forward View. This...TPP QRISK2 error – responsibility for practices (16 Aug 2016)
NHS England is concerned that only around half of practices affected by the TPP QRISK2 error have accessed the lists of affected patients provided to them. Dr Andrew Green,...Feedback on Capita Primary Care Support England services (16 Aug 2016)
Following concerns expressed about the current Capita/Primary Care Support England (PCSE) records and supplies services, the BMA recently sought feedback on practices’ experience of Capita’s service. Dan Hodgson in the...Guidance
We provide expert guidance for practices in our guidance section, as well as an archive of other materials you may find useful.
GP Support
Contact our GP Support team if you need help or advice.
The team provide professional and pastoral support to GPs and practice teams on a broad range of issues.
follow us on...
