Image source, Getty Images

Foreign secretary Boris Johnson has just arrived in Brussels for a meeting of EU foreign ministers.

And while today's meeting won't focus on the attacks, Mr Johnson says cyber security is "a huge issue".

"A huge amount of work goes on between the UK Government and all our friends and partners around Europe, and indeed in the United States, where they are now stepping up their precautions against cyber attacks of these kinds."

BBC Shropshire

Shrewsbury & Telford Hospitals Trust has joined the list of NHS trusts affected by the ransomware attack. 

A patient due at the Royal Shrewsbury Hospital this morning tells BBC Radio Shropshire he was warned at the weekend that his CT scan might be delayed because of the attack. 

Sources at the hospitals have confirmed they have problems because of the cyber attack. 

Image source, Getty Images

The Home Secretary, Amber Rudd and Health Secretary, Jeremy Hunt will chair a COBRA meeting on cyber security later this morning. 

Cobra meetings, or Cobr meetings as they are often also called, are named after Cabinet Office Briefing Room A on Whitehall.

It is an emergency response committee, a get together of ministers, civil servants, the police, intelligence officers and others appropriate to whatever they are looking into.

Rather predictably there's been one clear beneficiary of the cyber-attack, it's security stocks.

London-listed cybersecurity exchange-traded fund ISE is up 0.9%. Its holdings include software provider Cisco Systems and cybersecurity firms Fireeye and Symantec.

Meanwhile as we mentioned earlier cloud network security firm Sophos, whose target price has also been upgraded by Deutsche Bank this morning, has soared 3.6% to a new record high

Image source, Getty Images

Founder of cyber security firm ECSC Ian Mann says the cyber attack can only be successful if firms have made two "significant mistakes".

He sums them up as:

"1. Failure to apply a security patch from Microsoft - graded the most serious 'critical' update - as of 14 March 2017.

"2. Having their network firewalls configured badly to allow traffic from the Internet or third-parties that should be blocked.”

Image source, Getty Images

Reports are trickling in of WannaCry infections in Asia. 

Chinese cyber-security firm Qihoo 360 has said “30,000” institutions – including hospitals, government offices and universities have been hit. 

On 12 May, the BBC was contacted by one university student who said several friends’ computers had been affected. The state-run oil company PetroChina has also said that on 13 May it was forced to disconnect the computer networks linking petrol stations across China for 12 hours, after parts of its online payment system were disabled.

And a large cancer hospital in Indonesia – Dharmais in West Jakarta – was also reported to be suffering from the WannaCry outbreak. Doctors were left without access to patient records and some arriving for treatment were forced to wait while IT staff attempted to redress the problems.

Japanese car maker Nissan, whose factory in the UK was affected by WannaCry last week, has said there was “no major impact” on its business. According to broadcaster NTV, 600 companies in Japan have been affected so far.

Given that the highest profile victim of the cyber attack has been the NHS, why hasn't health secretary Jeremy Hunt been out and about reassuring people?

UK cyber security minister Ben Wallace tells BBC Breakfast that because it's a criminal attack, it's not Mr Hunt's responsibility but that of the Home Office. 

"When the defence of the realm comes into play the Home Office takes over... what we've seen across Europe is that it's not health services. In Germany it was the train system. It's been Scottish Power in the UK, a private organisation... It would be wrong to say this only applies to the NHS," he says. 

BBC Breakfast

The National Health Service has been one of the worst-affected bodies in the global ransomware attack. 

Ben Wallace, the UK's cyber-security minister, said that over the weekend IT staff had worked in NHS trusts across the country to restore data from back-up and install security patches to cope with the attack.

"Hopefully this has stabilised and today and for the rest of the week services will return to normal," he told BBC Breakfast.

Image source, Malware Tech

The one person who's emerged well out of the cyber attack is a 22-year-old UK security researcher who "accidentally" halted the spread of the malicious ransomware.

Known by the pseudonym MalwareTech, he managed to find what appeared to be a "kill switch" in the rogue software's code.

He told the BBC on Saturday that "I have not slept a wink."

Today he's said that he fears for his safety, telling MailOnline: 

"In future someone might want to retaliate - they could find my identity within seconds. If they know where I live, they could really do anything."

Today Programme
BBC Radio 4

Image source, Getty Images

The vast majority of trusts are now operating normally, according to Chris Hopson, chief executive of  NHS Providers, the association of NHS foundation trusts and trusts.

He advises people to check the NHS choices website as well as their individual trust. 

"A very small number," are still affected he says.

"But the general advice is please go to a planned appointment unless you're told not to," he adds.

BBC Radio 5 live

Image source, EPA

The UK put £1.9bn aside last year to improve the country's cyber-security architecture. 

But Friday's attack shows "a lot needs to be done to make sure this money's put to good use," says Klisman Murati, a counter-terrorism and security analyst. 

There are big gaps in the protection of many companies and organisations. An attacker only needs to find a small window to infiltrate operating systems, he tells Radio 5 live.

Small-to-medium sized enterprises are among the most vulnerable, because cyber-defence isn't the thing they prioritise, he adds. 

The British head of Europol says the police agency is concerned that more computers are at risk, despite a temporary fix against the ransomware attack on Friday.

EU police body Europol estimated on Sunday that there were more than 200,000 victims in 150 countries due to the ransomware attack. 

However, that figure is likely to grow as people switch on their computers today, if their IT has not been updated and their security systems patched over the weekend.

So could you be a victim? It's unlikely, according to BBC tech journalist Zoe Kleinman who's written this handy guide to the attack. 

But she says you can protect yourself by running updates, using firewalls and anti-virus software and by being wary when reading emailed messages.

Regularly back up your data so you can restore files without having to pay up should you be infected, as there is no guarantee that paying the ransom will result in your files being unlocked.

The UK's National Cyber Security Centre website contains advice, external on how to apply the patch to stop the ransomware - MS17-010 - and what to do if you can't.

Image source, Getty Images

The big concern is that people will have clocked off on Friday before realising they'd been sent an email containing the ransomware virus. 

"Most of the attacks are arriving via e-mail, so there are many 'landmines' waiting in people's in-boxes," said Michael Gazeley, managing director of Network Box, a Hong Kong-based cybersecurity company.  

Few firms in Asia have reported disruptions so far. But Mr Gazeley said the numbers could be higher than we realised.

 "The last thing they want to do is come out in public and admit it," he said. 

The global ransomware attack started on Friday and hit banks, hospitals, and companies in 150 countries.

In France, some Renault car plants had to halt production, while Spanish telecoms giant Telefonica and US package delivery giant FedEx were also struck. 

And, in Germany, train arrivals and departure boards were hacked - leading to a return to chalk and blackboards.

The graphic below outlines some of the worst-affected bodies.

Rory Cellan-Jones
Technology correspondent

What made NHS hospitals so vulnerable? The BBC's Rory Cellan-Jones has some answers in his blog this morning:

"IT professionals in the health service believe that the most likely explanation dates back to March this year when Microsoft issued a security update for its more recent versions of Windows," he says. 

"It was designed to deal with a vulnerability in something called Server Message Block, which is a protocol for sharing files across a network.

"We now know that Friday's attack made use of this vulnerability, so hospitals which did not apply that patch were leaving themselves open to attack.

"So why would they have failed to act? Well, many organisations take time to apply updates, wanting to be sure that there are no compatibility problems with other software applications.

"Hospitals often have a wide and somewhat chaotic collection of software, some of which will be very old but still seen as vital by those who use it."

Read more of Rory's blog here.