Trusts in Essex, Blackpool, Derbyshire and elsewhere have confirmed they too have been targeted, and are issuing similar statements urging people to avoid A&E departments where possible. Routine appointments are also being cancelled. With systems down, staff are unable to use phones, access schedules, patient records, emails, X-rays, test results and prescriptions. Needless to say, it's serious.
Reports from hospitals and GP surgeries are piling up, with a lot of activity on Twitter suggesting the ransomware is spreading throughout the entire IT network of NHS England. According to the BBC, the NHS in Wales, which runs on a separate system, remains unaffected.
NHS Digital has released this statement on the ongoing cyberattack:
"A number of NHS organisations have reported to NHS Digital that they have been affected by a ransomware attack.
The investigation is at an early stage but we believe the malware variant is Wanna Decryptor.
This attack was not specifically targeted at the NHS and is affecting organisations from across a range of sectors.
At this stage we do not have any evidence that patient data has been accessed.
NHS Digital is working closely with the National Cyber Security Centre, the Department of Health and NHS England to support affected organisations and ensure patient safety is protected.
Our focus is on supporting organisations to manage the incident swiftly and decisively, but we will continue to communicate with NHS colleagues and will share more information as it becomes available."
The ransomware in question is thought to be spreading via internal email, and is demanding $300 in Bitcoin in exchange for returning user control and decrypting files. Earlier today, Spain's National Cryptology Centre said various local firms were being targeted by this same variant of the WannaCry virus, including Telefonica and several energy suppliers.
