Vectra, a leader in AI-powered cyberattack detection and threat hunting, has announced that Bolton NHS Foundation Trust selected its Cognito cyberattack detection and threat-hunting platform to expose hidden attackers inside its network.
The Cognito platform, which automates threat detection and secures against hidden attackers, utilises Artificial Intelligence and always-learning threat behaviour models to mitigate security risks that could impact clinical care, operations and patient safety.
Bolton NHS is responsible for the provisioning of community health centres and clinics to more than 140,000 people in Bolton and the surrounding area northwest of Manchester, as well as district nursing and intermediate care and services at the Royal Bolton Hospital.
To deliver high-quality care and control costs, Bolton NHS had undertaken a strategic Digital Transformation project. As a critical part of this transformation, the Foundation Trust wanted a cybersecurity solution that supported its digital healthcare initiatives.
Bolton NHS also wanted to secure its highly integrated IT ecosystem and protect critical patient, financial and clinical research data across a growing number of mobile devices, medical internet-of-things devices, data centre workloads and cloud services.
An AI-powered cyberattack detection and threat hunting platform, Cognito finds hidden and unknown attackers in real-time to enable quick, decisive incident response. The highest-risk threats are automatically prioritised and triaged by Cognito, enabling the cybersecurity team to quickly stop advancing threats before key assets are damaged or stolen.
“We are duty bound to protect our patient information,” said Brett Walmsley, Chief Technology Officer at Bolton NHS Foundation Trust. “After WannaCry, security was top of people’s minds. If someone is in your network, how would you know?”
“Cognito filled a gap,” Walmsley added. “We needed to know what we didn’t know and Cognito showed us what was hidden. We have a strong security infrastructure but there’s always ambiguity. With Cognito, we don’t have to worry about not knowing an attacker is in our network.”
Bolton NHS supports an increasing number of connected devices on its network, including patients and visitors using guest Wi-Fi for their personal devices, MRI systems and other medical devices, and Wi-Fi-enabled infusion pumps.
As a result, NHS Bolton needed to strengthen its network security protections and simultaneously give the IT security team greater visibility into risks and potential attacks that were invisible before the Cognito platform was deployed.
“The healthcare industry is a treasure trove of highly sensitive and valuable data and, as has been seen by a number of high-profile attacks on the NHS, a top target for cybercriminals” said Chris Morales, Head of Security Analytics at Vectra.
“In a pressurised environment where every second counts and could save a life, IT teams need to be able to prioritise threats based on their relevance and severity. With Cognito, the time-consuming work of manual threat hunting and investigations is already done for them, making the team more efficient and effective as they secure data centre and cloud workloads and user and medical IoT devices.”