Upgrade Lag – and how to dodge an NHS style ‘cyberattack’

Avoiding Cybersecurity Risks: A 4-Point Plan for Your Organisation

A Wake-Up Call: Learning from the NHS Cyberattack

The recent NHS cyberattack served as a stark reminder of the dangers of outdated systems. The organisation was still relying on obsolete software, including versions running on Windows XP, making them easy targets for malware.

The Upgrade Lag Problem

Restricting software installation to IT specialists does not address “upgrade lag”—the delay in applying critical system updates. Empowering staff with controlled permissions, supported by monitoring, can reduce risk while keeping systems current.

A Simple 4-Point Plan

1. Identify IT experts within departments.
2. Enable device independence and web-based tools where possible.
3. Implement regular “Jubilee Sprints” for upgrades and technical debt.
4. Proactively prevent upgrade lag with a long-term update strategy.