A UK firm has been hit by a £3.07 million fine after being hit by a ransomware attack that exposed sensitive data related to almost 80,000 people, and disrupted NHS services.

The level of legacy debt varies widely across the NHS and a recent report from the Department of Science Technology and Innovation (DSIT) has revealed that legacy technology can range from as little as 10 to as much as 60-70%. This reliance on outdated systems presents a significant cyber security challenge, heightened by the fact that 15% of surveyed organisations could not estimate the size of their legacy estate. The report also highlights that these systems are high-risk, prone to security vulnerabilities, lack support, and subject to operational failures.