Cyber criminals Using Social Profiles

 

It’s a Fact

When you search for cyberattacks by vertical, always in the top categories is healthcare.  It can be filtered from there by the size of the business, whether it is enterprise or small to medium-sized establishments, but the information targeted is patient data.

Why?

Because who knows more personal information about you than your doctor?  Likely, no one.  And if that data can be accessed, it can be like opening a treasure chest of data to a hacker.  So many ways to manipulate that data, it can be an endless source of income via ransomware or sales on the dark web.

Back for More

With outdated and unsupported systems allowing easy access for hackers, the amount of PHI uncovered in a simple breach makes it a jackpot find.  Not only are technical security gaps an easy entrance for cybercriminals into healthcare organizations, but poor employee cyber-hygiene makes it incredibly easy for hackers to find their way in. Once these databases go for sale on the dark web, they are then used AGAIN by other cybercriminals for a second round of attacking whether it be by selling the patient data or using administrative credentials to login and hit the network with another breach.

This activity is not limited to US-based hackers either.  Foreign-based hackers have been found to target US healthcare networks in an attempt to blackmail them, as well as gain access to research data.  Not only does this pose a threat to the patient data, but to the United States medical industry in a different way.  If advances in treatment, prescription solutions, or any type of research is stolen and credited to another business entity or country, US-based businesses will suffer that loss financially or from lack of recognition.

What’s the Remedy?

Raising awareness, updating equipment, networks, software, etc. and addressing the risk of biomedical devices before they are in place – all are necessary.  We also need to continually address the human factor within healthcare organizations as it is proven time and time again that this poses one of the highest risks to any breach occurring.

The post Repeat Offender appeared first on HIPAA Secure Now!.

Tax Security 2.0: The Taxes-Security-Together Checklist

It seems like everyone is getting on-board with Cyber Security and for good reason.  Bad-actors (Hackers) are getting more and more sophisticated and we as business owners need to make a change.  Bad-actors know how to get around most of the tools we use to stop them because the tools are so out-dated.  Anti-virus and firewalls have been around for over 30 years without much change to the process of stopping attacks.  The biggest reason is because from the beginning Security was never about having a set-it-and-forget-it mindset, this is wrong, we need to have a layered approach to security, and this is what’s missing, especially in small businesses.

 

Most small businesses have the mindset “if I get the latest antivirus and firewall I’m good” or “my IT provider has me covered“.  These are all wrong thinking, you need to have the mindset that they can get in, and they may already be in and I just don’t know it yet.  Usually when a ransomware attack happens, it is after a hackers has already been in your system for a while,  the ransomware is their parting gift.  You must create policies and procedures that you continuously evaluate at least every six months.  You also need to continuously train your employees, not just a annual training, that doesn’t work anymore.  Every 39 seconds there is an attempt to break into a computer and these attacks are performed by sophisticated AI robots, not individuals, so they never tier, so you must put you best foot forward.

 

The IRS has created Tax Security 2.0 – A “Taxes-Security-Together” Checklist

Leaders from the IRS, state tax agencies and the tax industry today called on tax professionals nationwide to take time this summer to review their current security practices, enhance safeguards where necessary and take steps to protect their businesses from global cybercriminal syndicates prowling the Internet. 

Take a look at this video and see how the IRS is stepping in and urging Tax professionals of all sizes to take this serious.

 

It is starting to become the LAW, no more are the days of just installing an antivirus and hope for the best.  Now the government is starting to step in and force companies to do more, to step up your efforts and if you don’t there are hefty fines to pay and in some cases like HIPAA, jail time.

 

So I urge all of my fellow business owner, office manager and alike, take this seriously, do just think that this will just pass someday, because it won’t, it’s getting worse.

Is Your COMPANY's Data on the Dark Web, Find out TODAY!!!

GET YOUR FREE DARK WEB SCAN TODAY!!!

Copyright © 2015 - 2018 Sentree Systems, Corp.. All rights reserved.

Sentree Systems, Corp. | 6137 Crawfordsville Rd Ste F #177 Indianapolis, IN 46224 | 317-939-3282