In a dramatic turnaround, more than 100 NHS hospitals successfully repelled a widespread cyber-attack on Monday by reverting to paper-based systems. The attack, which targeted NHS Digital infrastructure, was neutralised not by sophisticated software but by old-fashioned resilience. Staff used pen and paper to record patient data, coordinate care, and manage appointments.
The NHS cyber defence protocol, which includes offline backup plans and rigorous staff training, has been praised as a model for healthcare systems worldwide. Health Secretary Wes Streeting called it "a triumph of preparation over panic."
The recovery from the attack, which hit trusts from Newcastle to Cornwall, took an average of four hours. Patient safety was maintained throughout. The cost of the attack is still being assessed but is expected to be minimal compared to the £1.
2bn lost to ransomware in the sector last year. Unions representing NHS staff have demanded a bonus for those who worked through the crisis, with Unison's Sarah Jones saying: "We always know our people deliver, but this shows the value of investment in training and backup systems."
The attack serves as a reminder of the fragility of digital health records, but also of the power of a well-drilled workforce. As one nurse in Birmingham put it: "We didn't need a firewall.
We needed a pen."
