NHS Cybersecurity Strategy to 2030: Is it Enough to Protect Healthcare?

The UK government has introduced a cybersecurity strategy to protect the National Health Service (NHS) and social care sector from increasing cyberattacks, with the aim of achieving cyber resilience across health and social care by 2030. However, critics argue the strategy does not go far enough, highlighting the omission of securing cyber-physical systems and the Zero Trust security model, which is considered fundamental for cyber resilience. They suggest short-term milestones and urgent actions are needed to address these vulnerabilities and mitigate risks.