Cybersecurity in 2020: IoT Medical Devices, Ransomware, Legacy OS

healthitsecurity | December 12, 2019

Cybersecurity in 2020: IoT Medical Devices, Ransomware, Legacy OS
The healthcare sector in 2019 has taken some massive blows when it comes to cybersecurity, big hacks, and third-party vendor breaches. The American Medical Collection Agency data breach dominated the first half of the year, impacting more than 25 million patients and sparking lawsuits and investigations. The Department of Health and Human Services Office for Civil Rights continued to crack down on potential HIPAA violations, imposing civil monetary fines in both the millions and thousands. Beazley noted a trend in the agency’s enforcement efforts with smaller breaches facing greater scrutiny. In fact, the latest breach settlement with OCR centered around a provider failing to adequately notify the agency of a breach. While Sentara Hospitals’ mailing error impacted just 577 patients, the $2.175 civil monetary penalty reflected the health system’s refusal to follow OCR’s directive to properly report the breach.

Spotlight

The Fujitsu Group established the “FUJITSU Way” as the Group’s philosophy and principles. We are strongly aware of the change in the role and responsibility of the corporation in society, and established the following corporate philosophy to indicate the significance of the existence of the Fujitsu Group. ICT (Information and Communication Technology) connects the world’s people and creates a variety of ideas and opportunities. On the other hand, we are confronted by new issues due to the rapid proliferation of ICT. Preparation against the increasing number of cross-border cyber-attacks and assured protection of private and confi dential information are items companies and organizations should respond to urgently. At the Fujitsu Group, we use technologies nurtured through our own systems operations as a base for responding to these types of problems while collaborating with a variety of related organizations. The Fujitsu Group has a vision of a “Human Centric Intelligent Society” where anyone can use ICT to draw out their maximum potential in a world where society has sustainable growth. We think it is our social responsibility as a global ICT company to use the power of ICT to contribute to the realization of a sustainable earth and society and maintain and reinforce a safe and secure digital society.

Related News

DATA SECURITY

CyberMDX Joins the Microsoft Intelligent Security Association

CyberMDX | April 21, 2021

CyberMDX, a leading healthcare cybersecurity provider that provides visibility and threat prevention for medical devices and clinical networks, announced today that it has joined the Microsoft Intelligent Security Association (MISA), an ecosystem of independent software vendors and managed security service providers that have integrated their security solutions with Microsoft to better defend against a wide range of threats. CyberMDX's leading Healthcare Security Suite has been integrated with Microsoft Defender for Endpoint to provide robust visibility and incident management for medical devices and IoT. The integration combines CyberMDX's unmanaged network visibility and identification capability with Microsoft Defender for Endpoints' single pane of glass view of the managed network to provide healthcare organizations with unrivaled cross-platform device visibility, classification, and incident response capabilities. The built-in automation allows security teams to go from warning to remediation in minutes and at scale. Customers will benefit from CyberMDX's ability to automatically identify and label unmanaged clinical assets, such as medical equipment and IoMT, to establish an accurate inventory of all connected devices within the network, in addition to the visibility benefits and identification capabilities. About CyberMDX CyberMDX is a medical cybersecurity pioneer and the firm behind the leading IoMT visibility and security solution. CyberMDX identifies, categorizes, and defends wired medical equipment, preserving resiliency, patient protection, and data privacy. Risks are quickly mitigated and assets streamlined with CyberMDX's continuous endpoint discovery and mapping, comprehensive risk management, AI-powered containment & reaction, and operational analytics.CyberMDX is a medical cybersecurity pioneer and the firm behind the leading IoMT visibility and security solution. CyberMDX identifies, categorizes, and defends wired medical equipment, preserving resiliency, patient protection, and data privacy. Risks are quickly mitigated and assets streamlined with CyberMDX's continuous endpoint discovery and mapping, comprehensive risk management, AI-powered containment & reaction, and operational analytics.

Read More

PLATFORM SECURITY

Credence Security Signs Partnership Agreement with Infosec Ventures to Deliver Human-Centric Security Solutions to the Middle East

Credence Security | August 25, 2021

Credence Security, a leading regional specialized value-added distributor for cybersecurity, forensics, governance, risk and compliance solutions, today announced that it has signed a partnership agreement with Infosec Ventures' HumanFirewall, a leader in human cyber risk mitigation and management. Under the agreement, Credence Security will be responsible for promoting and delivering Infosec Ventures' HumanFirewall® platform across its robust channel network in the Middle East. Infosec Ventures' offerings are available entirely on-premises or in a local cloud, in line with compliance and data sovereignty regulations, specifically for mission critical organizations in the government as well as large enterprises. Hackers are increasingly preying on the human element of cybersecurity, as a primary attack vector. According to the Verizon 2021 Data Breach & Incident Report (DBIR), over 85% of data breaches involved human error. In the Middle East, a 2020 study by the Ponemon Institute and IBM Security, revealed that the average cost of a data breach per company in the region is $6.53 million, which is higher than the global average of $3.86 million per incident. The report also identified human error among the most common root causes of data breaches in the UAE and Saudi Arabia. Additionally, similar industry studies have indicated that more than 90% of successful cyber-attacks begin with an email. These figures highlight a significant need for solutions that will not only safeguard business-critical systems but will also transform employees into an organization's best cybersecurity asset. HumanFirewall® transforms employees from an organization's weakest link into their strongest line of defence. It is a world-first security awareness and training platform that also works when real attacks strike. It augments with technology what humans lack in attention. It gamifies the learning experience via phishing simulations, builds individual risk-profiles, rewards real-time reporting, remediates incidents instantly, orchestrates auto-blacklisting enterprise wide via easy to deploy one-click integration with Microsoft 365 (O365), Google Workspace (formerly GSuite) and Exchange. The solution is trusted by top corporations in 142 countries. "We selected Credence Security as our regional value-added distributor based on our shared ethos of being a channel-centric business. Besides their proven market expertise and extensive channel network, Credence Security has a strong understanding of our needs and vision as a leading vendor in the region. Also, like us, they are passionate about cybersecurity. We are confident that by partnering with a premier distributor such as Credence Security, we can further accelerate our already strong local presence and fast-track our growth." Garreth Scott, Managing Director, Credence Security, said, "People's desire to quickly process information with minimal effort has created a unique vulnerability in the digital age, making them the weak links in the cyber chain. We firmly believe that HumanFirewall's innovative cybersecurity tools, backed by its exceptional team of industry experts, address a compelling demand for a modern approach to securing the human element. We are looking forward to bringing their ground-breaking solutions to our partners and customers across the Middle East region." ABOUT CREDENCE SECURITY: Established in 1999, Credence Security, a PAN-EMEA speciality Value-added Distributor, is a leader in Cybersecurity, Forensics, Governance, Risk and Compliance. With headquarters in Dubai and regional offices in Johannesburg, London, Nairobi, and Hyderabad. We are a pure-play provider of security and forensics solutions, to both public and private sector enterprises across Europe, Middle East, Africa and India, through a select network of specialist resellers. ABOUT HUMANFIREWALL HumanFirewall transforms employees from an organisation's weakest link into their strongest line of defence. It is a world-first security awareness and training platform that also works when real attacks strike. It augments with technology what humans lack in attention. It gamifies the learning experience via phishing simulations, builds individual risk profiles, rewards real-time reporting, remediates incidents instantly, orchestrates auto-blacklisting enterprise-wide via easy to deploy one-click integration with O365, GSuite and Exchange. Trusted by top corporations in 142 countries.

Read More

DATA SECURITY

Safe-T Acquires CyberKick, a Provider of Privacy Solutions and SaaS Security

Safe-T | July 07, 2021

Safe-T Group Ltd., a provider of secure access solutions and intelligent data collection, announced the acquisition of CyberKick Ltd. The closing of the transaction is anticipated next week, subject to assured customary closing situations, with delivering all mandatory documents and endorsements. Its cash concern will be funded with inner cash properties. CyberKick is a supplier of Software-as-a-Service (SaaS) security and privacy tools, intended to decrease users’ susceptibility to threats when making them stronger in their online action, to stop and protect against a broad range of cyber intimidations as well as to deliver consumers with control of their accounts and organization of access to complex data. The acquisition will accompaniment Safe-T’s safe access assortments for establishments with clarifications against recognized and unidentified threats and enlarge its footmark in the remote users’ cybersecurity marketplace. Conferring to unaudited consequences provided to Safe-T, the acquired business produced revenues of around $4.2 million in 2020 and was cost-effective. CyberKick’s confidentiality solution, which was lately launched and in a little time, previously purchased by thousands of end-users, lets users to achieve their online confidentiality with a influential, safe and encoded linking, providing harmless online browsing and keeping them harmless from hackers when using indiscreet Wi-Fi networks. iShield, CyberKicks’s security solution, is a protective online security tool that recognizes, removes, and helps avoid security and data threats that occur unknowingly to many users while browsing online. The solution provides strong, complete safety from online cyber-attacks such as phishing, ransomware, malware, data scams, identity theft, and viruses, all on the internet gateway contact level. By recognizing the dangers and blocking the gateway in advance, the solution secures consumers before any harm is done. About CyberKick CyberKick was built to fight that battle to make the internet a safer place for everyone. CyberKick has a talented and ambitious team of developers who work in harmony together with experienced product enthusiasts to complete its mission a reality. CyberKick’s products consist of two critical fields of cybersecurity are Online Cyber Security and Online Privacy Protection About Safe-T Group Ltd Safe-T Group Ltd. (Nasdaq, TASE: SFET) is a provider of access solutions and intelligent data collection. We also offer competent data collection cloud service based on our world’s fastest and most advanced & secured business proxy network, enabling clients to collect accurate, transparent, & sensitive data from public online sources.

Read More

Spotlight

The Fujitsu Group established the “FUJITSU Way” as the Group’s philosophy and principles. We are strongly aware of the change in the role and responsibility of the corporation in society, and established the following corporate philosophy to indicate the significance of the existence of the Fujitsu Group. ICT (Information and Communication Technology) connects the world’s people and creates a variety of ideas and opportunities. On the other hand, we are confronted by new issues due to the rapid proliferation of ICT. Preparation against the increasing number of cross-border cyber-attacks and assured protection of private and confi dential information are items companies and organizations should respond to urgently. At the Fujitsu Group, we use technologies nurtured through our own systems operations as a base for responding to these types of problems while collaborating with a variety of related organizations. The Fujitsu Group has a vision of a “Human Centric Intelligent Society” where anyone can use ICT to draw out their maximum potential in a world where society has sustainable growth. We think it is our social responsibility as a global ICT company to use the power of ICT to contribute to the realization of a sustainable earth and society and maintain and reinforce a safe and secure digital society.