“It was a relatively unsophisticated attack and could have been prevented by the NHS following basic IT security best practice. It was capable of travelling from machine to machine directly, infecting new computers by automatically seeding itself across corporate networks. Photograph: Daniel Leal-Olivas/AFP/Getty ImagesBefore the attack, NHS Digital carried out an “on-site cybersecurity assessment” at 88 out of the 236 health trusts in England. Dan Taylor, NHS Digital’s Head of Security, said WannaCry had been “an international attack on an unprecedented scale” and the NHS had “responded admirably to the situation”. In June, Britain’s National Cyber Security Centre completed an internal investigation into WannaCry and concluded that North Korean actors were behind the malware.

Source: The Guardian October 26, 2017 23:01 UTC