Cyber attackers have exploited a vulnerability in Internet Explorer that affects versions 6 through 11. Microsoft have pledged to fix the flaw but not for computers running on Windows XP. As a result, healthcare providers that have not upgraded and still use XP may have compliance issues under HIPAA. A security expert suggests the risks posed by the vulnerability can be reduced by setting IE’s Active Scripting and ActiveX to “prompt” or setting IE security levels to “high”. In the long term, Windows XP machines are at high risk and the cost of upgrading could be far outweighed by the cost of a HIPAA settlement. For those still running on XP, it is advised to archive information properly and consider upgrading to Windows 7 instead of Windows 8.
The growing integration of digital systems into critical infrastructure opens up new vulnerabilities to cyber threats. High interconnectivity between various national infrastructure systems (transport, healthcare,