NHS still running 2,300 PCs on Windows XP

Written by Sam Trendall on 16 July 2019 in News

Shadow Cabinet Office minister criticises government’s track record on cybersecurity

Credit: Pixabay

More than five years after Microsoft stopped providing support for Windows XP – and two years after the WannaCry cyberattack – the NHS still has more than 2,000 computers running on the operating system.

When WannaCry struck in May 2017, the NHS still ran 4.7% of its machines on XP, despite Microsoft having ceased support for the software back in 2014. Last year the government signed a £150m upgrade deal with the vendor, a key commitment of which was that the health service would update all its devices to Windows 10 by 14 January 2020 – the date at which support for Windows 7 ends.

But, in responding to a written parliamentary question from shadow Cabinet Office minister Jo Platt, the government revealed that 2,300 NHS computers are still running Windows XP.

Related content

Jackie Doyle-Price, minister for mental health, inequalities, and suicide prevention, said that the XP machines accounted for 0.16% of the NHS’s total estate of 1.4 million devices.

She added: “We are supporting NHS organisations to upgrade their existing Microsoft Windows operating systems, allowing them to reduce potential vulnerabilities and increase cyber-resilience.”

Platt said, two years on WannaCry, the continued presence of XP – which was released back in 2001 – is “an indictment of this government’s cybersecurity record”.

“The government is seriously lacking the leadership, strategy and co-ordination we need across the public sector to keep us and our data safe and secure. How many more warnings will it take before they listen and take action?,” she said. “The next Labour government will provide not only the resourcing but also the vital leadership, organisation and dedication needed to get our public sector fit and resilient to fight the cyber threats of the 21st century.”


About the author

Sam Trendall is editor of PublicTechnology

Share this page




Please login to post a comment or register for a free account.

Related Articles

Related Sponsored Articles

Stopping Cyber Attacks in Higher Education
19 April 2021

Higher Education institutions are some of the most consistently targeted organisations for cyberattacks. CrowdStrike explores the importance of the right cybersecurity measures. 

Avoid Infrastructure Paralysis: Six benefits of moving legacy Oracle workloads to the cloud
6 April 2021

There are many reasons to keep your Oracle workloads running on local servers. But there are even more reasons to move them to the cloud as part of a wider digital transition strategy. Six Degrees...

Human Centric Process Management: The common base for digital transformation, cost savings, compliance and agility
11 March 2021

Engage Process explains how to ensure that process remains at the heart of your management programs - and how to keep undue pressure from those processes 

The Role of Technology and Real-time Data in Managing Concurrent Emergencies
11 March 2021

With the backdrop of the COVID-19 pandemic, every disaster now entails responding to at least two emergencies. Dataminr explains how organisations can best prepare.