Forget the dot-com boom. We are now witnessing the dot-com bust in real time as it applies to the National Health Service. A coordinated cyber attack has forced 100 hospitals across the UK to abandon their digital systems and revert to pen and paper. The irony is palpable: an institution that has spent billions on IT modernisation is now relying on the same technology that Florence Nightingale used.
The attack, which struck at 4 am this morning, targeted centralised patient record systems and appointment scheduling platforms. Within hours, operating theatres were cancelled, A&E departments were diverted, and pharmacists were handwriting prescriptions. The NHS has confirmed that the attack is a 'zero-day' exploit, meaning it was previously unknown to security experts. This is not a script kiddie operation; this is a state-level actor or a sophisticated criminal enterprise.
Let's talk about the cost. The immediate hit is the disruption of elective surgeries and outpatient appointments. But the real concern is the long-term damage to the already stretched health budget. The Treasury will have to allocate emergency funds for system restoration, cybersecurity upgrades, and compensation for lost revenue. Given Chancellor Reeves's fiscal headroom of less than £9 billion, this could spell yet another round of budget cuts elsewhere.
Markets are already twitchy. Sterling slipped 0.3% against the dollar as traders priced in increased government spending. Gilt yields edged up, reflecting the market's worry about fiscal discipline. The Bank of England will be watching this closely. If this attack triggers a broader loss of confidence in UK infrastructure, we could see capital flight. Foreign investors do not like uncertainty, and the NHS is a bellwether for British stability.
The attack also raises serious questions about the government's commitment to cybersecurity. The NHS spent £740 million on cyber defences in the last financial year, yet here we are. This suggests a fundamental misallocation of resources. Perhaps the money would have been better spent on decentralising data storage or investing in offline backup systems. The bureaucrats love their shiny integrated platforms, but they forget that complexity is the enemy of security.
Patients are the ultimate victims. A mother cannot access her child's vaccination records. A diabetic cannot get a repeat prescription without a phone call to a GP who is also drowning in paper. The waiting lists, already at 7.4 million, will balloon further. This is not just a healthcare crisis; it is an economic drag. Each cancelled operation means lost productivity. Each delayed diagnosis means more expensive treatment down the line.
The government's response has been characteristically slow. The Cabinet Office held an emergency meeting but offered no timeline for restoration. The Health Secretary mumbled something about 'resilience' and 'lessons learned'. We have heard it all before. After the WannaCry attack in 2017, the NHS promised to patch its vulnerabilities. Seven years and billions of pounds later, we are back to pen and paper.
If there is a silver lining, it is that this attack might finally catalyse a proper risk assessment of our digital infrastructure. But do not hold your breath. The Treasury will focus on the immediate fiscal impact, the Bank of England will fret over inflation, and the markets will continue to price in uncertainty. The only certainty is that the cost of this attack will far exceed the supposed savings from digitisation.
For now, the NHS is a monument to systemic fragility. And the markets are taking note. I will be watching the 10-year gilt yield closely. Any sustained rise above 4.5% would signal a loss of confidence that could take years to repair. God save the Queen, or should I say, save the bottom line.
