Practice staff have been encouraged to be careful of hackers and cyberattacks and now an expert has shared a range of tips to protect systems.

Mike Fell, Executive Director of National Cyber Security Operations at NHS Digital since April 2022, gave advice as part of international Cyber Security Awareness Month this October. He warns that it has never been so crucial to take vital cyber security steps to prevent criminals getting hold of data, devices and accounts.

“Here in the NHS, getting cyber security wrong has the potential to cause significant impacts across the health and care system,” he said. “If a GP can’t access their system, they may not be able to share life-saving prescriptions with pharmacies or critical information with hospitals. Similarly, cyber attacks can cause cancelled appointments and surgeries, possibly resulting in care diversion to other hospitals.”

He recommends using strong passwords, the longer and more complex the better. “Make sure that somebody who knows you well could not guess your password in 20 attempts,” he said. In addition, IT users should beware of phishing scams aiming to steal personal information, which may be via email, websites or phone calls.

“They are getting more clever and more realistic” he said, but look for incorrect branding, spelling mistakes, unusual email addresses, and suspicious hyperlinks. Mr Fell also encouraged staff not to share their ID pass, or wear it in public or on social media, and to watch out for tailgaters at protected area. “Don’t be afraid to ask for ID,” he says. NHS Digital also recommend keeping up to date with data training and guidance, never leaving computers or mobile devices unlocked, and use caution when connecting to public WiFi.

“I understand how busy everyone is across the NHS right now, but I would encourage everyone to make sure cyber security is a top priority,” Mr Fell concluded.