Does anyone work in or for the NHS to help comment?
NHS has been attacked by WannaCry due to unpatched/clunky/susceptible Windows OS.
Asking a frontline NHS doctor, her main functions are:
- Access to patient details, bookings, history
- Blood investigation requests and results (she says is the hardest)
BBC reporter, Chris Foxx, explains:
A few thoughts here:Many jobs can be done using software everyone can buy, but some businesses need programs that perform very specific jobs - so they build their own.
For example. a broadcaster might need specialist software to track satellite feeds coming into a newsroom or a hospital might need custom-built tools to analyse X-ray images.
Developing niche software can be very expensive: programming, testing, maintenance and continued development all adds up.
Then along comes a new version of Windows, and the software isn't compatible. Companies face the cost of upgrading computers and operating system licenses, as well as rebuilding their software from scratch.
So, some choose to keep running the old version of Windows instead. In some businesses, that's not a huge risk, but in a hospital the stakes are higher.
- It's my understanding for general database driven applications e.g. patient records, bookings; could be migrated to web-based apps and accessed vi a browser.
- Same can be applied to communication applications: email, chat, general file access.
- For specialist, critical software such for X-Rays; perhaps these still require their older OS's. These could in theory be segregated off the network with their files securely uploaded to an internal shared server e.g. via SCP
So, here's an idea:
- Migrate all non-critical database driven apps, and communication apps, to web-based apps; then one can simply use a compatible browser: phone, tablet or even a Raspberry Pi
- Isolate specialist critical software off the network whilst providing a safe conduit to transfer necessary files
- If a Raspberry Pi was then used instead of WinXP for current Desktops (with a monitor and keyboard); surely this would be a lot more secure?