Siemens Healthineers Products Vulnerable to Microsoft BlueKeep Wormable Flaw
May29

Siemens Healthineers Products Vulnerable to Microsoft BlueKeep Wormable Flaw

Six security advisories have been issued covering Siemens Healthineers products. The flaws have been assigned a CVSS v3 score of 9.8 and concern the recently announced Microsoft BlueKeep RDS flaw – CVE-2019-0708. CVE-2019-0708 is a remotely exploitable flaw that requires no user interaction to exploit. An attacker could exploit the flaw and gain full control of a vulnerable device by sending specially crafted requests to Remote Desktop Services on a vulnerable device via RDP. The flaw is wormable and can be exploited to spread malware to all vulnerable devices on a network in a similar fashion to the WannaCry attacks of 2017. The severity of the vulnerability prompted Microsoft to issue patches for all vulnerable operating systems, including unsupported Windows versions which are still used in many healthcare and industrial facilities. The flaw affects Windows 2003, Windows XP, Windows 7, Windows Server 2008 and Windows Server 2008 R2. If the patch cannot be applied, RDP should be disabled, port 3389 should be blocked at the firewall, and Network Level Authentication (NLA) should...

Read More
Multi-State Action Results in $900,000 Financial Penalty for Medical Informatics Engineering
May28

Multi-State Action Results in $900,000 Financial Penalty for Medical Informatics Engineering

Medical Informatics Engineering (MIE) is required to pay a financial penalty of $900,000 to resolve a multi-state action over HIPAA violations related to a breach of 3.9 million records in 2015. The announcement comes just a few days after the HHS’ Office for Civil Rights settled its HIPAA violation case with MIE for $100,000. MIE licenses a web-based electronic health record application called WebChart and its subsidiary, NoMoreClipboard (NMC), provides patient portal and personal health record services to healthcare providers that allow patients to access and manage their health information. By providing those services, MIE and NMC are business associates and are required to comply with HIPAA Rules. Between May 7 and May 26 2015, hackers gained access to a server containing data related to its NMC service.  Names, addresses, usernames, passwords, and sensitive health information were potentially accessed and stolen. A lawsuit was filed in December 2018 alleging MIE and NMC had violated state laws and several HIPAA provisions. 16 state attorneys general were named as plaintiffs in...

Read More
HHS Confirms When HIPAA Fines Can be Issued to Business Associates
May27

HHS Confirms When HIPAA Fines Can be Issued to Business Associates

Since the Department of Health and Human Services implemented the requirements of the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 in the 2013 Omnibus Final Rule, business associates of HIPAA covered entities can be directly fined for violations of HIPAA Rules. On May 24, 2019, to clear up confusion about business associate liability for HIPAA violations, the HHS’ Office for Civil Rights clarified exactly what HIPAA violations could result in a financial penalty for a business associate. Business associates of HIPAA Covered entities can only be held directly liable for the requirements and prohibitions of the HIPAA Rules detailed below. OCR does not have the authority to issue financial penalties to business associates for any aspect of HIPAA noncompliance not detailed on the list.   You can download the HHS Fact Sheet on direct liability of business associates on this link. Penalties for HIPAA Violations by Business Associates The HITECH Act called for an increase in financial penalties for noncompliance with HIPAA Rules. In 2009, the...

Read More
Vulnerabilities Identified in Siemens Sinamics Perfect Harmony Drives and Scalance Access Points
May17

Vulnerabilities Identified in Siemens Sinamics Perfect Harmony Drives and Scalance Access Points

Siemens has discovered several high-severity vulnerabilities and one critical vulnerability in the Scalance W1750D direct access point. The vulnerabilities can be exploited remotely and require a low level of skill to exploit. If exploited, an attacker could gain access to the W1750D device and execute arbitrary code within its underlying operating system, gain access to sensitive information, perform administrative actions on the device, and expose session cookies for an administrative session. The vulnerabilities are present in all versions prior to 8.4.0.1 CVE-2018-7084 is a critical command injection vulnerability in the web interface that could allow arbitrary system commands to be performed within the underlying operating system. If exploited, files could be copied, the configuration could be read, the device could be rebooted, and files could be written or deleted.  The vulnerability has been assigned a CVSSv3 base score of 9.8 out of 10. CVE-2019-7083 is a high-severity information exposure vulnerability that could allow an attacker to access core dumps of previously...

Read More
Cisco Umbrella Pricing
May15

Cisco Umbrella Pricing

A DNS filter is an important part of an organization’s malware and anti-phishing defenses. In this post we cover Cisco Umbrella, a popular DNS filter, and look at Cisco Umbrella pricing to help you decide whether this is the right solution for your organization. What is Cisco Umbrella? Cisco Umbrella, the new name for OpenDNS, is a DNS filter that allows healthcare organizations to block web-based threats and carefully control the types of web content that can be accessed by employees and guest users. A DNS filter is also an important element of layered cybersecurity defenses, as it prevents network users from accessing malicious web content and downloading potentially malicious files. Importantly for healthcare organizations, a DNS filter provides an additional layer of protection from phishing by blocking attempts to access phishing webpages via hyperlinks in emails. The solution includes 80+ categories of website which can be allowed or blocked based on the organization’s acceptable internet usage policies. Blacklists and whitelists are supported, which block or allow specific...

Read More
DHS Issues Security Best Practices to Mitigate Risks Associated with Office 365 Migrations
May14

DHS Issues Security Best Practices to Mitigate Risks Associated with Office 365 Migrations

Body: The DHS’ Cybersecurity and Infrastructure Security Agency (CISA) has issued a new analysis report highlighting some of the common risks and vulnerabilities associated with transitioning from on-premise mail services to cloud-based services such as Microsoft Office 365. The report details best practices to adopt to manage risks and prevent user and mailbox compromises. Many healthcare organizations have realized the benefits of transitioning to cloud-based email services yet lack the in-house expertise to manage their migrations. Many have used third-party service providers to migrate their email services to Office 365. CISA notes that use of third parties to manage Office 365 migrations has led to an increase in security incidents. Over the past 6 months, CISA has had several engagements with customers who have used third-party service providers to manage their migrations and discovered a range of different Office 365 configurations that lowered organization’s security posture and left them vulnerable to phishing and other cyberattacks. CISA notes that the majority of those...

Read More
Vulnerability Identified in Philips Tasy EMR
May01

Vulnerability Identified in Philips Tasy EMR

A vulnerability has been identified in the Philips Tasy EMR information system. If exploited, an attacker could send unexpected information to the system, execute arbitrary code, alter information flow, and gain access to patient information. The flaw was identified by security researcher Rafael Honorato who reported the vulnerability to Philips, which reported the flaw to the National Cybersecurity and Communications Integration Center. An advisory about the vulnerability was issued by ICS-CERT on April 30, 2019. The vulnerability – CVE-2019-6562 – is present in Tasy EMR versions 3.02.174 and earlier, and mostly affects healthcare providers in Brazil and Mexico. The vulnerability has not been exploited in wild and no public exploits have been identified. The cross-site scripting vulnerability is caused by improper neutralization of user-controllable input during web page generation. The vulnerability requires a low level of skill to exploit by an individual on the customer site or connecting via a VPN. Despite the potential for information exposure, the vulnerability...

Read More
Critical Vulnerability Identified in Fujifilm Computed Radiography Cassette Readers
Apr24

Critical Vulnerability Identified in Fujifilm Computed Radiography Cassette Readers

Two vulnerabilities have been identified in Fujifilm computed radiography cassette readers. If exploited, an attacker could gain access to the operating system, execute arbitrary code, render the devices inoperable, alter functionality, and cause image loss. The vulnerabilities are present in the following Fujifilm computed radiography cassette readers: CR-IR 357 FCR Capsula X CR-IR 357 FCR Carbon X CR-IR 357 FCR XC-2 The most serious vulnerability – CVE-2019-10950 – is due to improper access controls on telnet services. A remote attacker with a relatively low level of skill could exploit the vulnerability to gain access to the operating system and remotely execute code and affect the functionality of the device. The vulnerability has been assigned a CVSS v3 base score of 9.8 out of 10. The second vulnerability – CVE-2019-10948 – is due to uncontrolled resource consumption. An overflow of TCP packets could be caused in a denial of service (DoS) attack. If exploited, a DoS attack could render the device in operable and would require a reboot to restore functionality. The...

Read More
AWS Chief Technology Officer Allays Fears about Cloud Security and Talks about the Huge Potential of Alexa Voice Technology
Apr12

AWS Chief Technology Officer Allays Fears about Cloud Security and Talks about the Huge Potential of Alexa Voice Technology

Amazon Web Services’ chief technology officer, Werner Vogels, has been dispelling security myths about cloud computing at the Dublin Tech Summit in Ireland this week. Concerns have been raised about the security of data stored in the cloud, especially following the discovery that 540 million Facebook records had been exposed on AWS: One of several high-profile data breaches that have involved AWS-stored data in the past 12 months. Fears About Compliance and the Cloud Companies required to comply with General Data Protection Regulation (GDPR) must ensure that the personal data of EU citizens is secured and kept private and confidential. Since GDPR came into effect on May 25, 2018, the potential penalties for data exposures have increased significantly. It is therefore understandable that companies are concerned about storing data in the cloud rather than on-premise infrastructure that they feel better able to secure. Germany’s federal commissioner, Ulrich Kelber, spoke before Vogels at the Tech Summit and voiced his concerns about American cloud storage providers, stating that they...

Read More
Study Reveals How Well Consumers Feel Health Data is Protected
Apr11

Study Reveals How Well Consumers Feel Health Data is Protected

The results of a study on healthcare cybersecurity from the perspective of consumers has recently been published by cybersecurity firm Morphisec. More than 1,000 consumers were surveyed to obtain their opinions on healthcare cybersecurity, the healthcare threat landscape, how their personal health information is being targeted, and how well they feel their health information is protected. The transition from paper records to electronic health records has improved efficiency and allows health information to be shared more easily, but vulnerabilities have been introduced that can be exploited by hackers. Morphisec notes that cyberattacks on the healthcare industry occur at more than double the rate of attacks on other industry sectors. The volume of attacks and frequency that they are reported in the media undoubtedly affects how secure consumers believe their health records are. Since 2009, more than 190 million healthcare records have been exposed or stolen, which is equivalent to 59% of the population of the United States, yet when consumers were asked if their providers have...

Read More
Amazon Announces 6 New HIPAA Compliant Alexa Skills
Apr05

Amazon Announces 6 New HIPAA Compliant Alexa Skills

Six new HIPAA compliant Alexa skills have been launched by Amazon that allow protected health information to be transmitted without violating HIPAA Rules. The new HIPAA compliant Alexa skills were developed by six different companies that have participated in the Amazon Alexa healthcare program. The new skills allow patients to schedule appointments, find urgent care centers, receive updates from their care providers, access their latest blood sugar reading, and check the status of their prescriptions. This is not the first time that Alexa skills have been developed, but a stumbling block has been the requirements of the HIPAA Privacy Rule, which limit the use of voice technology with protected health information. Now, thanks to HIPAA compliant data transfers, the voice assistant can now be used by a select group of healthcare organizations to communicate PHI without violating the HIPAA Privacy Rule.  You can read more about the issues related to virtual assistants and HIPAA compliance here. Amazon has stated that it plans to work with many other developers through an invite-only...

Read More
Webinar: April 4, 2019: Email Security, DMARC, and Sandboxing
Apr04

Webinar: April 4, 2019: Email Security, DMARC, and Sandboxing

The healthcare industry is particularly vulnerable to phishing attacks and successful attacks commonly result in significant data breaches. It is now something of a rarity for a week to pass without a healthcare phishing attack being reported. While healthcare organizations are providing security awareness training to staff and are using email security solutions, those defenses are not always effective. To improve understanding of why advanced attacks are managing to evade detection by traditional email security solutions, email security solution provider TitanHQ is hosting a webinar. During the webinar TitanHQ will explain about the threat from phishing and how organizations can protect themselves and their customers/patients. The webinar will also explain how two new features of TitanHQ’s SpamTitan email security solution – DMARC authentication and sandboxing – can protect against advanced email threats, zero-day attacks, malware, phishing, and spoofing. Webinar Details: Date : Thursday, April 4th, 2019 Time: 12pm EST Duration: 30 minutes Sign up to the Webinar here....

Read More
Amazon Launches New System for De-identifying Medical Images
Apr02

Amazon Launches New System for De-identifying Medical Images

Amazon has announced that it has developed a new system that allows identifying protected health information contained in medical images to be automatically removed to prevent patients from being identified from the images. Medical images often have patients’ protected health information stored as text within the image, including the patient’s name, date of birth, age, and other metrics. Prior to the images being used for research, authorization must be obtained from the patient or all identifying data must be permanently removed.  Removing PHI from images requires a manual check and alteration of the image to redact the PHI and that can be an expensive and time-consuming process, especially when large number of images must be de-identified. The new system uses Amazon’s Rekognition machine-learning service, which can detect and extract text from images. The text is then fed through Amazon Comprehend Medical to identify any PHI. In combination with Python code it is possible to quickly redact any PHI in the images. The system works on PNG, JPEG, and DICOM images. A confidence score...

Read More
Concerns Raised About the Sharing of Health Data with Non-HIPAA Covered Entities via Apps and Consumer Devices
Mar27

Concerns Raised About the Sharing of Health Data with Non-HIPAA Covered Entities via Apps and Consumer Devices

Earlier this month, the eHealth Initiative Foundation and Manatt Health issued a brief that calls for the introduction of a values framework to better protect health information collected, stored, and used by organizations that are not required by law to comply with Health Insurance Portability and Accountability Act (HIPAA) Rules. Health information is increasingly being collected by a wide range of apps and consumer devices. In many cases, the types of data collected by these apps and devices are the same as those collected and used by healthcare organizations. While healthcare organizations are required to implement safeguards to ensure the confidentiality, integrity, and availability of health information and uses and disclosures of that information are restricted, the same rules do not cover the data if the information is collected by other entities. It doesn’t matter what type of organization stores or uses the data. If that information is exposed it can cause considerable harm, yet this is currently something of a gray area that current regulations do not cover properly. At...

Read More
Critical Vulnerability Affects Medtronic CareLink Monitors, Programmers, and ICDs
Mar22

Critical Vulnerability Affects Medtronic CareLink Monitors, Programmers, and ICDs

Two vulnerabilities have been identified in the Conexus telemetry protocol used by Medtronic MyCarelink monitors, CareLink monitors, CareLink 2090 programmers, and 17 implanted cardiac devices. Both vulnerabilities require a low level of skill to exploit, although adjacent access to a vulnerable device would be required to exploit either vulnerability. The most serious vulnerability, rated critical, is a lack of authentication and authorization controls in the Conexus telemetry protocol which would allow an attacker with adjacent short-range access to a vulnerable device to inject, replay, modify, and/or intercept data within the telemetry communication when the product’s radio is turned on. An attacker could potentially change memory in a vulnerable implanted cardiac device which could affect the functionality of the device. The vulnerability is being tracked as CVE-2019-6538 and has been assigned a CVSS v3 base score of 9.3. A second, medium severity vulnerability concerns the transmission of sensitive information in cleartext. Since the Conexus telemetry protocol does not use...

Read More
Is DocuSign HIPAA Compliant?
Mar19

Is DocuSign HIPAA Compliant?

Can DocuSign be used by healthcare organizations in connection with electronic protected health information (ePHI) without violating HIPAA Rules? Is DocuSign HIPAA compliant? DocuSign is a San Francisco-based provider of electronic signature technology and transaction management services. Via DocuSign, companies can send documents such as contracts to customers and business associates and obtain their electronic signatures to confirm that they have read the document and agree to any terms and conditions contained therein. In healthcare, eSignature services can streamline administrative tasks and save many hours of chasing up paperwork. The DocuSign solution can be used by healthcare providers for a range of different purposes, including obtaining eSignatures on SLAs, business associate agreements, credentialing forms, and patient consent forms. However, if the service is used in connection with any electronic protected health information, DocuSign would be classed as a business associate. HIPAA requires all business associates to enter into a HIPAA-compliant business associate...

Read More
Is Calendly HIPAA Compliant?
Mar14

Is Calendly HIPAA Compliant?

Calendly is a popular tool that is used by many businesses to schedule meetings and appointments, but can Calendly be used by healthcare organizations? Is Calendly HIPAA compliant? Businesses can waste a considerable amount of time scheduling appointments and meetings. Lengthy email exchanges and phone tag are commonplace. Calendly aims to eliminate the time wasted attempting to connect with others and the platform can reduce no-show rates through automated email and text reminders. The solution integrates with Google Calendar, iCloud calendar, Office 365, Salesforce, and GoToMeeting and other popular software platforms and can also be integrated directly into business websites to allow customers to schedule appointments directly. The platform is used by healthcare organizations for scheduling internal meetings, but in order to use Calendly with any electronic protected health information, healthcare organizations would first need to enter into a HIPAA-compliant business associate agreement with Calendly. Is Calendly HIPAA Compliant? Calendly explains on its website that the...

Read More
Is Evernote HIPAA Compliant?
Mar14

Is Evernote HIPAA Compliant?

Evernote is a useful cloud-based service that allows users to take notes, create to do lists, plan projects, and collaborate with teams, but is Evernote HIPAA compliant? Can Evernote be used in healthcare by physicians and other healthcare professionals without violating HIPAA Rules? Evernote serves as an easily accessible repository for a wide range of information, including documents, audio files, images, and video files. One of the key features of Evernote which makes it so useful is the ability to automatically synch files and notes across multiple devices. Evernote is available as a free app or a paid service for businesses and does incorporate access controls and security features such as single sign-on (SSO) and two-factor authentication to prevent unauthorized use of the applications.  Evernote stores data on the Google Cloud platform, which can be HIPAA compliant. Encryption is also supported by Evernote for Mac and Evernote for Windows Desktop. In-note encryption uses an AES 128-bit key. Evernote is designed to make data sharing as easy as possible, which should raise a...

Read More
Is Google Keep HIPAA Compliant?
Mar13

Is Google Keep HIPAA Compliant?

Google Keep is a cloud-based note taking application that allows notes to be shared across multiple devices, but is Google Keep HIPAA compliant? Can Google Keep be used in healthcare without violating HIPAA Rules? Many healthcare professionals would like to use an electronic note taking app but are concerned about potential HIPAA violations. These services are certainly useful and can help to improve efficiency. If you are looking for a HIPAA compliant note application, Google Keep is a natural choice. Google offers many products that can be used in healthcare and Google does offer a business associate agreement to healthcare organizations. Google Keep allows notes to be taken which can be accessed on multiple devices, and these can include voice notes, photos, and other files. Information that is added to Google Keep can be accessed across multiple devices via Google Drive. Google Drive is part of G Suite (formerly Google Apps) and Google Drive is covered by Google’s BAA. Is Google Keep HIPAA Compliant? If you use the paid version of G Suite and you have a BAA with Google, Google...

Read More
Sandboxing and DMARC Authentication Added to SpamTitan to Improve Email Threat Detection
Mar13

Sandboxing and DMARC Authentication Added to SpamTitan to Improve Email Threat Detection

Despite increased investment in cybersecurity, healthcare organizations still struggle to protect against advanced phishing threats and email impersonation attacks. Detection of new malware threats can also be a major challenge for small to medium sized healthcare organizations and managed service providers. To better serve the healthcare market and improve protection against sophisticated phishing attacks and zero-day malware, TitanHQ has announced it has added two new features to its SpamTitan spam filtering solution: DMARC email authentication and sandboxing. Due to the increase in email impersonation attacks, the Department of Homeland Security issued a binding operational directive in 2017 that required all executive branch agencies to fully adopt Domain-based Message Authentication, Reporting and Conformance (DMARC) to protect against email impersonation attacks and domain spoofing. DMARC authentication has now been incorporated into SpamTitan to improve detection of domain spoofing phishing attacks and prevent these phishing emails from reaching end users’ inboxes. New...

Read More
HIPAA Compliant Online Forms
Mar12

HIPAA Compliant Online Forms

Web forms offer healthcare organizations an easy way to digitally collect information from patients, but care must be taken not to violate HIPAA Rules. To collect any health data, HIPAA compliant online forms must be used. HIPAA Compliant Online Forms Must be Used for Collecting Health Information The HIPAA Privacy and Security Rules requires all HIPAA-covered entities and business associates to implement a range of safeguards to ensure the confidentiality, integrity, and availability of protected health information. Online forms are not specifically mentioned in the HIPAA text, but the Privacy and Security Rules do apply to online forms. Large healthcare organizations are more likely to have in-house staff with the skills to create forms that comply with HIPAA Rules, but many covered entities take advantage of the convenience of third-party webform solutions. There are many companies that offer HIPAA compliant online forms software that allows forms to be quickly spun up and used for a wide range of purposes such as onboarding new patients, obtaining consent, collecting payments,...

Read More
Is Return Path HIPAA Compliant?
Mar11

Is Return Path HIPAA Compliant?

Return Path is an email marketing and optimization platform that allows businesses to automate and analyze their email marketing campaigns but is Return Path HIPAA compliant? Can the email marketing platform be used by healthcare organizations without violating HIPAA Rules? Sending Marketing Emails to Patients and Health Plan Members Before any healthcare organization can use an email service for sending marketing emails that contain electronic protected health information (ePHI) they must first: Obtain consent from patients/plan members to receive marketing communications Ensure that the service provider has appropriate security controls to protect the confidentiality of ePHI stored by or used by the platform Ensure that ePHI can be uploaded to the platform securely without placing the information at risk of compromise Enter into a HIPAA-compliant business associate agreement (BAA) with the service provider Marketing messages are not included in the HIPAA Privacy Rule’s TPO definition. Consent must be obtained in writing from patients/members before ePHI can be used for marketing...

Read More
Is Mandrill HIPAA Compliant?
Mar08

Is Mandrill HIPAA Compliant?

Is Mandrill HIPAA compliant? Can MailChimp’s transactional email service be used by healthcare organizations without violating HIPAA Rules? Use of Mandrill by Healthcare Organizations Mandrill is a transactional email offering from MailChimp, the leading automated email marketing platform. Mandrill allows businesses to automatically send emails to customers and individuals that interact with their web apps and connects to MailChimp via an API. Transactional emails differ from marketing emails in that they are programmed to be triggered by events such as password resets, confirmation of placement of orders, welcome messages, and sending receipts. In contrast to marketing emails, which require an opt-in from patients/plan members under HIPAA Rules, in most cases, transactional emails do not. That does not mean that there are no HIPAA issues for healthcare organizations that are considering using Mandrill. Any email service used by a healthcare organization that requires electronic protected health information (ePHI) to be uploaded would have to have privacy and security safeguards...

Read More
Is Marketo HIPAA Compliant?
Mar07

Is Marketo HIPAA Compliant?

Marketo is a marketing automation solution for lead management and email marketing that was recently acquired by Adobe. Can Marketo be used by healthcare organizations in connection with ePHI? Is Marketo HIPAA compliant? Healthcare Marketing Healthcare organizations looking for a marketing automation platform need to ensure the platform provider complies with HIPAA regulations if the platform is to be used in connection with electronic protected health information. Healthcare organizations can use marketing automation platforms for a range of purposes without having to enter into a business associate agreement (BAA) with the solution provider, but if the solution is to be used with ePHI, a BAA is essential. HIPAA places restrictions on uses and disclosures of ePHI by HIPAA covered entities. ePHI can be used and disclosed for the purposes of providing treatment, in relation to payment for healthcare, or for healthcare operations (TPO) without having to obtain authorization from patients. Other uses and disclosures, which include marketing, require authorizations from patients. HIPAA...

Read More
Is SparkPost HIPAA Compliant?
Mar06

Is SparkPost HIPAA Compliant?

SparkPost is a popular email delivery and analytics platform that is used by many enterprises to communicate with customers, but can SparkPost be used by healthcare organizations in connection with electronic protected health information (ePHI)? Is SparkPost HIPAA compliant? HIPAA Compliant Email Solutions for Healthcare Organizations As part of our series of posts assessing software solutions and cloud services for their suitability for use by healthcare organizations required to comply with HIPAA Rules, we have assessed SparkPost to determine whether the company supports HIPAA compliance and whether its platform can be used in a HIPAA compliant manner. SparkPost is the leading worldwide email delivery and analytics platform and is used to send 37% of all business-to consumer emails. The email solution caters to organizations of all sizes and delivers powerful analytics. The platform incorporates a range of security measures, including anti-phishing controls to reduce the risk of email impersonation attacks and the company has achieved SOC 2 Type 2 certification. For healthcare...

Read More
Is JotForm HIPAA Compliant?
Mar05

Is JotForm HIPAA Compliant?

JotForm is a software solution for creating online forms. Can JotForm be used by healthcare organizations to collect patient information? Is JotForm HIPAA compliant? HIPAA Compliant Forms on Websites HIPAA covered entities can use online forms to collect a wide range of information from patients. Online forms are useful for registering new patients, obtaining consent, conducting customer surveys, and taking payments. Web forms streamline data collection, allow patient information to be sent to EHRs or other internal systems quickly and efficiently, and they can improve the patient experience. HIPAA covered entities that have the resources can create online forms manually; however, those that lack staff with the necessary skills or have to create large numbers of forms will benefit from using online form software to speed up the process of creating online forms. While form software can be used for all the above purposes, if the forms are used to collect protected health information, the software provider will be considered a business associate under HIPAA Rules. Consequently, prior...

Read More
Cofense Vision Launched: Accelerated Phishing Threat Detection and Remediation
Mar04

Cofense Vision Launched: Accelerated Phishing Threat Detection and Remediation

Cofense has announced the general availability of Cofense Vision: An alert system that provides real-time visibility into current, unreported phishing threats and accelerates detection and remediation. Phishing defenses should naturally include email gateway controls to block threats before they are delivered to inboxes, but no solution will provide total protection. It is inevitable that some phishing emails will be delivered to end users, even with multiple anti-phishing solutions in place. Training is essential to ensure those threats are recognized by employees, but given the sophistication of today’s phishing threats, some employees are sure to respond. Cofense Vision is a new solution that helps security operation center (SOC) and incident response (IR) teams to identify all instances of phishing messages in their email system and deal with those threats with greater speed and efficiency. The solution works in tandem with Cofense Triage, a solution that allows first responders to prioritize and understand reported phishing threats. An analysis of more than 2 million...

Read More
Is Postmark HIPAA Compliant?
Mar02

Is Postmark HIPAA Compliant?

Postmark is a transactional email service used by many companies to send activation emails, e-receipts, password reset messages, but can the service be used by healthcare organizations? Is Postmark HIPAA compliant? When new users sign up for a service, register to receive reports, or reset the passwords on their accounts, they want to receive emails instantly. Delayed emails often result in support calls or emails that staff have to deal with, which can take them away from other important tasks. It is therefore advantageous to use a reliable, automated service to send transactional emails instantly. Healthcare organizations can benefit from using such a service, but there are potential issues. HIPAA covered entities need to ensure that any email platform used is compliant with HIPAA Rules. If transactional emails include any electronic protected health information (ePHI), the email service provider would be considered a business associate. Safeguards would need to be incorporated into the platform to protect any ePHI from unauthorized access to the standards stipulated in the HIPAA...

Read More
Is Constant Contact HIPAA Compliant?
Mar01

Is Constant Contact HIPAA Compliant?

Massachusetts-based Constant Contact has developed an online and email marketing solution that makes it easy to keep in touch with customers and send out newsletters and marketing messages, but can Constant Contact be used by HIPAA-covered entities? Is Constant Contact HIPAA compliant? Sending Marketing Emails Containing ePHI The HIPAA Privacy Rule does not prohibit HIPAA-covered entities from sending marketing emails, but before marketing messages can be sent, patients/plan members must give their authorization to receive those communications. Provided authorizations have been received in advance, marketing emails can be sent without violating the HIPAA Privacy Rule. In order to improve efficiency, an email marketing solution may be considered, but HIPAA -covered entities need to exercise caution. Not all email marketing platforms have the necessary safeguards to meet the requirements of the HIPAA Security Rule, and some that do still cannot be used as the service provider is not prepared to enter into a business associate agreement with healthcare organizations. Uploading any...

Read More
Cofense Phishing Simulation Solution Enhanced with Responsive Delivery Option
Feb28

Cofense Phishing Simulation Solution Enhanced with Responsive Delivery Option

Each month, many healthcare organizations discover their employees’ inboxes have been compromised and the attackers have potentially gained access to patient health information. Phishing is the number one cyberthreat faced by healthcare organizations and phishing attacks are increasing in both frequency and complexity. Training employees how to recognize phishing and other email threats is essential, not only to prevent costly data breaches but also for HIPAA compliance. Providing training is only one element of improving human phishing defenses. It is also important to ensure that training has been taken on board by employees. The easiest way to do that and assess susceptibility and resilience to phishing attacks is through phishing simulations. Simulated phishing emails mirror real-world phishing emails and allow IT teams to find out which individuals are most susceptible to phishing attacks. Failed phishing simulations can be turned into a training opportunity. One problem faced by IT teams is making sure that phishing simulation emails are sent at the right time when they are...

Read More
EHR Vendor False Claims Act Violation Case Settled for $57.25 Million
Feb07

EHR Vendor False Claims Act Violation Case Settled for $57.25 Million

The Tampa, FL-based electronic health record (EHR) software developer Greenway Health LLC has agreed to settle violations of the False Claims Act with the Department of Justice for $57.25 million. The case concerns Greenway Health’s EHR product Prime Suite. The DOJ alleged that by misrepresenting the capabilities of the product, users submitted false claims to the U.S. government. Further, Greenway Health was alleged to have provided unlawful remuneration to users to induce them to recommend the EHR product to other healthcare providers. The U.S. government provided incentives to healthcare organizations to encourage them to transition to EHRs from paper records through the Meaningful Use program. Most healthcare providers have now made the change and now rely on EHR systems to support the healthcare decision process. It is therefore essential that EHR products allow patient health information to be recorded and transmitted accurately. In order for healthcare providers to qualify for Meaningful Use payments, they must only use EHR products that have been certified as meeting...

Read More
Vulnerabilities Identified in IDenticard PremiSys Access Control System
Feb04

Vulnerabilities Identified in IDenticard PremiSys Access Control System

ICS-CERT has issued an alert about three high severity vulnerabilities in the IDenticard PremiSys access control system. All versions of PremiSys software prior to version 4.1 are affected by the vulnerabilities. Successful exploitation of the vulnerabilities could result in full access being gained to the system with administrative privileges, theft of sensitive information contained in backups, and access being gained to credentials. The vulnerabilities could be exploited remotely and require a low level of skill to exploit. Details of the vulnerabilities have been publicly disclosed. The highest severity vulnerability CVE-2019-3906 concerns hard-coded credentials which allow full admin access to the PremiSys WCF Service endpoint. If successfully exploited, and attacker could obtain full access to the system with administrative privileges. The vulnerability has been assigned a CVSS v3 base score of 8.8. User credentials and other sensitive information stored in the system are encrypted; however, a weak method of encryption has been used which could potentially be cracked...

Read More
Patches Released to Mitigate KRACK Vulnerabilities Affecting Stryker Medical Beds
Jan30

Patches Released to Mitigate KRACK Vulnerabilities Affecting Stryker Medical Beds

Stryker has identified nine vulnerabilities that affect some of its Medical Beds. The vulnerabilities could potentially be exploited in a man-in-the-middle attack by an attacker within radio range of vulnerable product to replay, decrypt, or spoof frames. The vulnerabilities are present in the four-way handshake used by WPA and WPA2 wireless security protocols which allow nonce reuse in Key Reinstallation (KRACK) attacks. Similar vulnerabilities have been identified in a wide range of wireless devices. The nine vulnerabilities are summarized below: CVE-2017-13077: Reinstallation of pairwise key in the four-way handshake. CVE-2017-13078: Reinstallation of group key in the four-way handshake. CVE-2017-13079: Reinstallation of Integrity Group Temporal Key in the four-way handshake. CVE-2017-13080: Reinstallation of group key in the group key handshake. CVE-2017-13081: Reinstallation of Integrity Group Temporal Key in the group key handshake. CVE-2017-13082: Reinstallation of Pairwise Transient Key Temporal Key in the fast BSS transmission handshake. CVE-2017-13086: Reinstallation of...

Read More
Vulnerability Identified in BD FACSLyric Flow Cytometry Solution
Jan30

Vulnerability Identified in BD FACSLyric Flow Cytometry Solution

Becton, Dickinson and Company (BD) has identified an improper access control vulnerability in its BD FACSLyric flow cytometry solution. If the flaw is exploited, an attacker could gain access to administrative level privileges on a vulnerable workstation and execute commands. The vulnerability requires a low level of skill to exploit. BD extensively tests its software for potential vulnerabilities and promptly corrects flaws. BD is currently taking steps to mitigate the vulnerability for all users of vulnerable FACSLyric flow cytometry solutions. The flaw (CVE-2019-6517) is due to improper enforcement of user access control for privileged accounts. It has been given a CVSS v3 base score of 6.8 – Medium severity. BD self-reported the vulnerability to the National Cybersecurity & Communications Integration Center (NCCIC). The vulnerability is present in the following cytometry solutions: BD FACSLyric Research Use Only, Windows 10 Professional Operating System, U.S. and Malaysian Releases (Nov 2017 and Nov 2018) The U.S. release of BD FACSLyric IVD Windows 10 Professional...

Read More
New Report Reveals Spiraling Cost of Cyberattacks
Jan23

New Report Reveals Spiraling Cost of Cyberattacks

A new report from Radware has provided insights into the threat landscape in 2018 and the spiraling cost of cyberattacks. The report shows there has been a 52% increase in the cost of cyberattacks on businesses in since 2017. For the report, Radware surveyed 790 managers, network engineers, security engineers, CIOs, CISOs, and other professionals in organizations around the globe. Respondents to the survey were asked about the issues they have faced preparing for and mitigating cyberattacks and the estimated cost of those attacks. The 2018 Threat Landscape 93% of surveyed firms said they had experienced a cyberattack in the past 12 months. The biggest threat globally was ransomware and other extortion-based attacks, which accounted for 51% of all attacks. In 2017, 60% of cyberattacks involved ransoms. The reduction has been attributed to cybercriminals switching from ransomware to cryptocurrency mining malware. Political attacks and hacktivism accounted for 31% of attacks, down from 34% in 2017. The motive behind 31% of attacks was unknown, which demonstrates that attackers are now...

Read More
Vulnerabilities Identified in Dräger Infinity Delta Patient Monitors
Jan23

Vulnerabilities Identified in Dräger Infinity Delta Patient Monitors

The U.S. Department of Homeland Security Industrial Control Systems Cyber Emergency Team (US-CERT) has issued an advisory about three vulnerabilities affecting Dräger Infinity Delta patient monitoring devices. The flaws affect all versions of Infinity Delta, Delta XL, Kappa, and infinity Explorer C700 patient monitoring devices. The flaws could lead to the disclosure of sensitive information stored in device logs, be leveraged to conduct Denial of Service (DoS) attacks, or could potentially allow an attacker to gain full control of the operating system of a vulnerable device. The flaws were discovered by Marc Ruef and Rocco Gagliardi of scip AG. The vulnerabilities are detailed below, in order of severity: CVE-2018-19014 (CWE-532) – Exposure of Information in Log Files Log files are not appropriately secured and are accessible over an unauthenticated network. An attacker could gain access to device log files and view sensitive information relating to the internals of the monitor, location of the device, and its wired network configuration. The flaw has been assigned a CVSS v3 base...

Read More
Vulnerabilities Identified in Roche Point of Care Handheld Medical Devices
Nov08

Vulnerabilities Identified in Roche Point of Care Handheld Medical Devices

ICS-CERT has issued an advisory concerning five vulnerabilities that have been identified in Roche Point of Care handheld medical devices. Four vulnerabilities are high risk and one has been rated medium risk. Successful exploitation of the vulnerabilities could allow an unauthorized individual to gain access to the vulnerable devices, modify system settings to alter device functionality, and execute arbitrary code. The vulnerabilities affect the following Roche Point of Care handheld medical devices. Accu-Chek Inform II (except Accu-Chek Inform II Base Unit Light and Accu-Chek Inform II Base Unit NEW with Software 04.00.00 or later) CoaguChek Pro II CoaguChek XS Plus & XS Pro Cobas h 232 POC Including the related base units (BU), base unit hubs and handheld base units (HBU). CVE-2018-18564 is an improper access control vulnerability. An attacker in the adjacent network could execute arbitrary code on the system using a specially crafted message. The vulnerability is rated high severity and has been assigned a CVSS v3 base score of 8.3. The vulnerability is present in:...

Read More
Z Services Expands Partnership with TitanHQ to Provide New Cybersecurity Service
Nov08

Z Services Expands Partnership with TitanHQ to Provide New Cybersecurity Service

The United Arab Emirates-based managed security services provider, Z Services, has expanded its relationship with TitanHQ and will be offering further TitanHQ cybersecurity solutions to its customers to protect them from web-based threats and meet compliance requirements. Earlier in 2018, Z Services partnered with TitanHQ and started offering its clients a new spam filtering solution – Z Services Anti-Spam SaaS – which was powered by TitanHQ’s spam filtering technology. The new service has proven to be a tremendous success and is helping Z Services’ clients block email-based threats such as spam, phishing emails, malware, and ransomware to keep their networks secure. The success of the new service prompted Z Services to start offering two new TitanHQ-powered solutions to its clients: A web filtering SaaS offering powered by WebTitan and a new email archiving service powered by ArcTitan. Both solutions have been combined into the Z Services MERALE solution which is focused on SMEs. MERALE offers SMEs enhanced protection against Internet threats and helps SMEs improve productivity by...

Read More
TitanHQ Chosen to Provide Wi-Fi Filtering Service to Leading Satellite Provider
Nov01

TitanHQ Chosen to Provide Wi-Fi Filtering Service to Leading Satellite Provider

The leading satellite operator, Eutelsat, has chosen TitanHQ’s WebTitan Cloud for Wi-Fi to secure its Wi-Fi networks and create at safe and secure environment for employees and guests to access the Internet. Eutelsat is one of the world’s largest satellite operators. Through its fleet of satellites Eutelsat offers organizations, businesses, and governments video, data, and broadband services. Eutelsat has global coverage and serves more than 150 countries throughout Europe, the Middle East, and Africa. Eutelsat has offices in 44 countries and employs more than 1,000 operational, commercial, and technical professionals. To meet the needs of its workforce and provide Internet access to guests, Eutelsat has deployed Wi-Fi access points throughout its offices. To ensure the Internet can be accessed safely and securely by all users, Eutelsat needed to deploy a Wi-Fi security solution that was capable of preventing its Wi-Fi users from visiting malicious websites such as phishing web pages and sites hosting exploit kits. Eutelsat also needed to enforce its acceptable Internet usage...

Read More
Webinar: TitanHQ and Datto Networking Discuss Enhanced Web Content Filtering
Oct17

Webinar: TitanHQ and Datto Networking Discuss Enhanced Web Content Filtering

Earlier this year, spam and web filtering solution provider TitanHQ partnered with Datto Networking, the leading provider of MSP-delivered IT solutions to SMBs. The new partnership has allowed Datto to enhance security on the Datto Networking Appliance with enterprise-grade web filtering technology supplied by TitanHQ. The new web filtering functionality allows users of the appliance to carefully control the web content that can be accessed by employees and guests and provides superior protection against the full range of web-based threats. TitanHQ and Datto Networking will be holding a webinar that will include an overview of the solution along with a deep dive into the new web filtering functionality. Webinar Details: Datto Networking & Titan HQ Deliver Enhanced Web Content Filtering Date: Thursday, October 18th Time: 11AM ET | 8AM PT | 4PM GMT/BST Speakers: John Tippett, VP, Datto Networking Andy Katz, Network Solutions Engineer Rocco Donnino, EVP of Strategic Alliances, TitanHQ Click here to register for the...

Read More
FDA Issues Warning About Flaws in Medtronic Implantable Cardiac Device Programmers
Oct16

FDA Issues Warning About Flaws in Medtronic Implantable Cardiac Device Programmers

The U.S. Food and Drug Administration (FDA) has issued a warning about vulnerabilities in certain Medtronic implantable cardiac device programmers which could potentially be exploited by hackers to change the functionality of the programmer during implantation or follow up visits. Approximately 34,000 vulnerable programmers are currently in use. The programmers are used by physicians to obtain performance data, to check the status of the battery, and to reprogram the settings on Medtronic cardiac implantable electrophysiology devices (CIEDs) such as pacemakers, implantable defibrillators, cardiac resynchronization devices, and insertable cardiac monitors. The flaws are present in Medtronic CareLink 2090 and CareLink Encore 29901 programmers, specifically how the devices connect with the Medtronic Software Distribution Network (SDN) over the internet. The connection is required to download software updates for the programmer and firmware updates for Medtronic CIEDs. While a virtual private network (VPN) is used to establish a connection between the programmers and the Medtronic SDN,...

Read More
Most Common Healthcare Phishing Emails Identified
Oct16

Most Common Healthcare Phishing Emails Identified

A new report by Cofense has revealed the most common healthcare phishing emails and which messages are most likely to attract a click. The 2018 Cofense State of Phishing Defense Report provides insights into susceptibility, resiliency, and responses to phishing attacks, highlights how serious the threat from phishing has become, and how leading companies are managing risk. The high cost of phishing has been highlighted this week with the announcement of a settlement between the HHS’ Office for Civil Rights and Anthem Inc. The $16 million settlement resolved violations of HIPAA Rules that led to Anthem’s 78.8 million record data breach of 2015. That cyberattack started with spear phishing emails. In addition to the considerable cost of breach remediation, Anthem also settled a class action lawsuit related to the breach for $115 million. Even an average sized breach now costs $3.86 million to resolve (Ponemon/IBM Security, 2018). Previous Cofense research suggests that 91% of all data breaches start with a phishing email and research by Verizon suggests 92% of malware infections...

Read More
Vulnerabilities Identified in PeerVue Web Server, Carestream Vue RIS and Siemens Healthcare Products
Oct10

Vulnerabilities Identified in PeerVue Web Server, Carestream Vue RIS and Siemens Healthcare Products

The Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has issued five advisories in the past week about vulnerabilities discovered in equipment used by healthcare organizations in the United States. Change Healthcare PeerVue Web Server A vulnerability (CVE-2018-10624) has been identified in the Change Healthcare PeerVue Web Server which could allow an attacker to gain information about the web server that would enable it to be targeted in a cyberattack. The vulnerability only requires a low level of skill to exploit by an attacker on an adjacent network. The vulnerability exposes information through an error message. The flaw was discovered by security researcher Dan Regalado of Zingbox and has been assigned a CVSS v3 base score of 4.3. Change Healthcare took rapid action to address the vulnerability and a patch has now been issued. Users should contact Change Healthcare if they are running PeerVue Web Server 7.6.2 or earlier for information about installing the patch. Carestream Vue RIS A remotely exploitable vulnerability...

Read More
Healthcare Industry Highly Susceptible to Phishing Attacks and Lags Other Industries for Phishing Resiliency
Oct02

Healthcare Industry Highly Susceptible to Phishing Attacks and Lags Other Industries for Phishing Resiliency

The healthcare industry is extensively targeted by phishers who frequently gain access to healthcare data stored in email accounts. In some cases, those email accounts contain considerable volumes of highly sensitive protected health information. Phishing is one of the leading causes of healthcare data breaches. In August 2018, Augusta University Healthcare System announced that it was the victim of a phishing attack that saw multiple email accounts compromised. The breached email accounts contained the PHI of 417,000 patients. The incident stood out due to the number of individuals impacted by the breach, but it was just one of several healthcare organizations to fall victim to phishing attacks in August. Data from the HHS’ Office for Civil Rights shows email is the most common location of breached PHI. In July, 14 healthcare data breaches out of 28 involved email, compared to 6 network server PHI breaches – The second most common location of breached PHI. It was a similar story in May and June with 9 and 11 email breaches reported respectively. Cofense Research Shows Healthcare...

Read More
JotForm Announces Enterprise Version of its Encrypted HIPAA Forms Software
Sep20

JotForm Announces Enterprise Version of its Encrypted HIPAA Forms Software

Jotform has announced that it has released an enterprise version of its HIPAA forms software to allow large healthcare organizations to collect and manage data more efficiently. JotForm is a leading developer of online form software and has more than four million users worldwide. The company’s software solution has been adopted by many enterprises for creating a wide range of data collection forms, although up until now, they were required to use multiple accounts within the same organization. In order to centralize and simplify data collection, the company developed a product to specifically meet the needs of enterprises. Enterprise users can now manage all of their data through a single umbrella account. JotForm Enterprise has no submission limits nor restrictions on the number of forms that can be created and used. The solution includes custom domains for forms, white-labeling for branding purposes, and a suite of management tools. Earlier in 2018, JotForm announced that it is now a HIPAA forms software provider and will sign business associate agreements with healthcare...

Read More
ICS-CERT Issues Advisory After Nine Vulnerabilities Discovered in Philips E-Alert Units
Sep03

ICS-CERT Issues Advisory After Nine Vulnerabilities Discovered in Philips E-Alert Units

The Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has issued a further advisory about Philips healthcare devices after nine vulnerabilities were self-reported to the National Cybersecurity & Communications Integration Center (NCCIC) by the Amsterdam-based technology company. This is the fourth advisory issued by ICS-CERT in the past month. Previous advisories have been issued over cybersecurity vulnerabilities in its central patient monitoring system – Philips IntelliVue Information Center iX (1 vulnerability), Philips PageWriter Cardiographs (2 vulnerabilities), and Philips IntelliSpace Cardiovascular cardiac image and information management software (2 vulnerabilities). The latest advisory concerns nine vulnerabilities discovered in Philips eAlert units – These are non-medical devices that monitor imaging systems such as MRI machines to identify issues rapidly before they escalate. The devices are used by healthcare providers around the world. One of the vulnerabilities is rated critical, five are high severity,...

Read More
Critical Flaw Identified in BD Alaris Plus Medical Syringe Pumps
Aug28

Critical Flaw Identified in BD Alaris Plus Medical Syringe Pumps

A critical remotely exploitable flaw has been detected in BD Alaris Plus medical syringe pumps. The flaw would enable a threat actor to gain access to an affected medical syringe pump when it is connected to a terminal server via the serial port. If the flaw is exploited a threat actor could alter the intended function of the pump. The flaw is an improper authentication vulnerability. The software fails to perform authentication for functionality that requires a provable user identity. The flaw was identified by Elad Luz of CyberMDX who notified Becton, Dickinson and Company (BD), which in turn voluntarily reported the vulnerability to the National Cybersecurity & Communications Integration Center and the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT). The latter issued an advisory about the vulnerability on August 23, 2018. The vulnerability affects version 2.3.6 of Alaris Plus medical syringe pumps and prior versions, specifically the Alaris GS, Alaris GH, Alaris CC, and Alaris TIVA products. The vulnerability has been assigned a CVSS v3 score of 9.4 out...

Read More
Warnings Issued About Vulnerabilities in Philips PageWriter Cardiographs and IntelliVue Information Center iX
Aug23

Warnings Issued About Vulnerabilities in Philips PageWriter Cardiographs and IntelliVue Information Center iX

Over the past few months, several vulnerabilities have been discovered in Philips medical devices, software and systems. This week, two further advisories have been issued by the Industrial Control Systems Cyber Emergency Team (ICS-CERT) about vulnerabilities the firm’s real-time central monitoring system, Philips IntelliVue Information Center iX, and its PageWriter cardiographs. All three of the vulnerabilities are classed as medium risk with CVSS v3 base scores ranging between 5.7 and 6.1. CVE-1999-0103 is a denial of service vulnerability that affects the Philips IntelliVue Information Center iX version B.02. The flaw was discovered by a user of the system and was reported to Philips, which in turn reported the vulnerability to the National Cybersecurity and Communications Integration Center’s (NCCIC). The vulnerability can be exploited remotely and does not require a high level of skill. If multiple initial UDP requests are made, it could compromise the availability of the device by causing the operating system to become unresponsive. The vulnerability has been assigned a...

Read More
Updates to Cofense Phishing Simulation Platform Add Even More Opportunities for Automation
Aug23

Updates to Cofense Phishing Simulation Platform Add Even More Opportunities for Automation

Cofense has announced that further updates have been made to its award-winning phishing email simulation platform, Cofense PhishMe. The updates provide even greater opportunities for automating phishing simulation campaigns to save administrators even more time. Security awareness and anti-phishing training is now an important part of healthcare organizations’ cybersecurity programs. In addition to investing in technology to block phishing and other email-based threats, end users require training. Even layered defenses will not stop all phishing threats from reaching inboxes. Without training, end users will remain the weakest link in the security chain. Phishing simulation exercises are an important part of the training process. They allow security teams to assess how effective their training programs have been and identify weak points in the training program. They also allow security teams to identify individuals who have failed to understand certain parts of the training program. While phishing simulation platforms include some opportunities for automation and scheduling,...

Read More
Arnot Health Reduces ER Door-to-Floor Times by 36% with QliqSOFT
Aug10

Arnot Health Reduces ER Door-to-Floor Times by 36% with QliqSOFT

Arnot Health has implemented a new communications solution that has improved communication efficiency, slashed the time it takes to transfer patients from the emergency room to new units, and has improved both the level of care provided to patients and staff satisfaction. Arnot Health runs a 475-bed health system in southern New York State and constantly evaluates the healthcare services it provides to patients and searches for new opportunities to improve patient care. One area where there was considerable room for improvement was the admissions process, especially in its emergency department. “The amount of time it was taking to align all the appropriate resources was causing delays, and nobody wants to sit in an ER longer than they need to,” said Mike Connor, director of business information systems at Arnot Health. “We recognized an opportunity in the admissions process to greatly improve patient and staff satisfaction by eliminating the old school way of handling admissions and embracing a more mobile approach.” While many patients can be treated in the...

Read More
More Than 20 Serious Vulnerabilities in OpenEMR Platform Patched
Aug09

More Than 20 Serious Vulnerabilities in OpenEMR Platform Patched

OpenEMR is an open-source electronic health record management system that is used by many thousands of healthcare providers around the world. It is the leading free-to-use electronic medical record platform and is extremely popular. Around 5,000 physician offices and small healthcare providers in the United States are understood to be using OpenEMR and more than 15,000 healthcare facilities worldwide have installed the platform. Around 100 million patients have their health information stored in the database. Recently, the London-based computer research organization Project Insecurity uncovered a slew of vulnerabilities in the source code which could potentially be exploited to gain access to highly sensitive patient information, and potentially lead to the theft of all patients’ health information. The Project Insecurity team chose to investigate EMR and EHR systems due to the large number of healthcare data breaches that have been reported in recent years. OpenEMR was the natural place to start as it was the most widely used EMR system and with it being open-source, it was easy...

Read More
Vulnerabilities Discovered in Medtronic MyCareLink Patient Monitors and MiniMed Insulin Pumps
Aug08

Vulnerabilities Discovered in Medtronic MyCareLink Patient Monitors and MiniMed Insulin Pumps

An advisory has been issued by ICS-CERT about vulnerabilities in MedTronic MyCareLink Patient Monitors and the MiniMed 508 Insulin Pump. This is the second advisory to be issued about MyCareLink Patient Monitors in the past six weeks. In June, ICS-CERT issued a warning about the use of a hard-coded password (CVE-2018-8870) and an exposed dangerous method or function vulnerability (CVE-2018-8868). The latest vulnerabilities to be discovered are an insufficient verification of data authenticity flaw (CVE-2018-10626) and the storage of passwords in a recoverable format (CVE-2018-10622). The vulnerabilities are present in all versions of the Medtronic MyCareLink 24950 and 24952 Patient Monitors. If an attacker were to obtain per-product credentials from the monitor and the paired implanted cardiac device, it would be possible for invalid data to be uploaded to the Medtronic Carelink network due to insufficient verification of the authenticity of uploaded data. The vulnerability has been assigned a CVSS v3 score of 4.4 (medium severity). The way that passwords are stored could allow...

Read More
Cofense Develops New Phishing-Specific Security Orchestration, Automation and Response Platform
Jul30

Cofense Develops New Phishing-Specific Security Orchestration, Automation and Response Platform

Cofense has developed a new product which will soon be added to its portfolio of anti-phishing solutions for healthcare organizations and incorporated into its phishing-specific security orchestration, automation and response (SOAR) platform. The announcement comes at a time when the healthcare industry has been experiencing an uptick in phishing attacks. The past few months have seen a large number of healthcare organizations fall victims to phishing attacks that have resulted in cybercriminals gaining access to employee’s email accounts and the PHI contained therein. Perimeter security defenses can be enhanced to greatly reduce the number of malicious emails that reach employees’ inboxes, but even when multiple security solutions are deployed they will not block all phishing threats. Security awareness training is essential to reduce susceptibility to phishing attacks by conditioning employees to stop and think before clicking links in emails or opening questionable email attachments and to report suspicious emails to their security teams. However, security teams can struggle to...

Read More
TitanHQ Expands Executive Team with Appointment of Rocco Donnino as VP of Strategic Alliances
Jul04

TitanHQ Expands Executive Team with Appointment of Rocco Donnino as VP of Strategic Alliances

TitanHQ, the Galway, Ireland-based provider of spam filtering, web filtering, and email archiving solutions, has announced the appointment of Rocco Donnino to its executive team. TitanHQ has been experiencing impressive growth over the past three years and has doubled its staff to meet demand and provide support for its customers. To accommodate growth in the United States, TitanHQ has recently opened a new office in New York and has expanded its offices in Florida, now taking up all three floors of the Mazars Building. In the past 12 months, TitanHQ has formed new strategic partnerships with industry heavyweights such as Microsoft, Comcast, Datto, Kaseya, BitDefender, and ViaSat and now provides email and web security services to more than 7,500 businesses around the world. To help continue its impressive growth trajectory, TitanHQ has now appointed Rocco Donnino as its Executive Vice President of Strategic Alliances – a new position created to help ensure the continued expansion of the company’s strategic partnerships. Rocco Donnino has been charged with growing the firm’s...

Read More
Qcentive Controls AWS Costs & Enables Cloud Computing in Healthcare with ParkMyCloud
Jul02

Qcentive Controls AWS Costs & Enables Cloud Computing in Healthcare with ParkMyCloud

The Massachusetts-based healthcare startup Qcentive, the developer of a cloud-based platform that helps healthcare companies with the creation and management of value-based contracts, was one of the first companies authorized to move healthcare data to the cloud. The first-in-class transaction platform has been certified as HIPAA compliant and incorporates appropriate safeguards to ensure the confidentiality, integrity, and availability of ePHI. The company uploads patient and healthcare contract information to AWS, where the data are accessed by the company’s application. The platform helps its health plan clients and their value-based contracting providers analyze claims data and patient information such as emergency room visits and use the information to quickly calculate potential savings. While developing the platform, Qcentive uploaded large quantities of patient and claim data to AWS and created AWS resources as necessary, although as many companies discover, AWS costs can quickly mount up. Qcentive tried to find a way to keep its AWS costs under control, starting with...

Read More
Vulnerabilities Identified in Medtronic MyCareLink Patient Monitors
Jul02

Vulnerabilities Identified in Medtronic MyCareLink Patient Monitors

ICS-CERT has issued an advisory about two recently discovered vulnerabilities in Medtronic MyCareLink patient monitors. The devices are used by patients with implantable cardiac devices to transmit their heart rhythm data directly to their clinicians. While the devices have safeguards in place and transmit information over a secure Internet connection, the vulnerabilities could potentially be exploited by a malicious actor to gain privileged access to the operating system of the devices. The vulnerabilities – a hard-coded password vulnerability (CWE-259 / CVE-2018-8870) and an exposed dangerous method of function (CWE-749 / CVE-2018-8868) vulnerability – exist in all versions of 24950 and 24952 MyCareLink Monitors. The former has been assigned a CVSS v3 score of 6.4 and the latter a CVSS v3 score of 6.2. The vulnerabilities were discovered by security researcher Peter Morgan of Clever Security, who reported the issues to NCCCIC. Exploitation of the hard-coded password vulnerability would require physical access to the device. After removing the case, an individual could...

Read More
Acumera Partners with TitanHQ to Offer Web Filtering to Customers
Jun26

Acumera Partners with TitanHQ to Offer Web Filtering to Customers

The Galway, Ireland-based cybersecurity firm TitanHQ has announced the formation of a new partnership with the Austin, TX-based managed services provider Acumera. Acumera is a leading provider of managed network security services in the United States. Securing widely distributed networks consisting of hundreds or thousands of locations is one of the main strengths of Acumera, with the managed services provider able to meet the unique connectivity, operational, and data security challenges that these large networks create. The company offers network security, connectivity, and visibility services for a wide range of industry sectors. Acumera has been chosen by many healthcare provider networks who have chosen to outsource cybersecurity and provides network security services for drug stores, automated parking garages, and has secured the POS systems and networks of some of the best-known retailers in the United States, including 7-Eleven, Circle K, Subway, Valero service stations, Benetton, and Pluckers. One area where Acumera’s managed services required a boost was web filtering,...

Read More
Advisory Issued After 8 Vulnerabilities Discovered in Natus Xltek NeuroWorks Software
Jun21

Advisory Issued After 8 Vulnerabilities Discovered in Natus Xltek NeuroWorks Software

ICS-CERT has issued an advisory following the discovery of eight vulnerabilities in version 8 of Natus Xltek NeuroWorks software used in Natus Xltek EEG medical products. If the vulnerabilities are successfully exploited they could allow a malicious actor to crash a vulnerable device or trigger a buffer overflow condition that would allow remote code execution. All eight vulnerabilities have been assigned a CVSS v3 score above 7.0 and are rated high.  Three of the vulnerabilities – tracked as CVE-2017-2853, CVE-2017-2868, and CVE-2017-2869 – have been assigned a CVSS v3 base score of 10, the highest possible score. CVE-2017-2867 has been assigned a base score of 9.0, with the other four vulnerabilities – CVE-2017-2852, CVE-2017-2858, CVE-2017-2860, and CVE-2017-2861 – given a rating of 7.5. The vulnerabilities are a combination of stack-based buffer overflow and out-of-bounds read vulnerabilities. CVE-2017-2853 would allow an attacker to cause a buffer overflow by sending a specially crafted packet to an affected product while the product attempts to open a file requested by...

Read More
CSO Online Rates Cofense Triage One of Best Security Software Solutions of 2018
Jun15

CSO Online Rates Cofense Triage One of Best Security Software Solutions of 2018

Cofense Triage, the phishing incident response platform, has been included in CSO Online’s 2018 list of the best security software solutions of 2018. To produce the list, CSO Online conducted independent reviews of a wide range of software solutions. Strict review methodologies were used to select the best security products currently on the market. Each product was researched to find out how it worked, how the solution could be deployed in customer environments, the benefits it provided, and the major problems that the solution resolved. The review was based on the top technology areas for security identified by Gartner, which included cloud workload protection platforms, remote browsers, deception technologies, endpoint detection and response platforms, network traffic analysis solutions, managed detection and response services, microsegmentation solutions, cloud access security brokers, OSS security scanning services for DevSecOps, and container security. CSO Online tested all security solutions in a dedicated lab environment with each tested, where appropriate, against some of...

Read More
TitanHQ Integrates Web Security into Datto’s Networking Suite
Jun13

TitanHQ Integrates Web Security into Datto’s Networking Suite

TitanHQ, the leading provider of email and web security solutions for SMBs, has formed a strategic alliance with the networking giant Datto and will be providing its innovative cloud-based web filtering solution to Datto MSPs. Norwalk, CT-based Datto is primarily a data backup, disaster recovery, and business continuity service provider. The company’s mission is to provide SMBs with the highest quality enterprise-level technology to protect their businesses and networks. Datto achieves this through its managed service provider (MSP) partners, giving them access to software solutions to ensure their clients are well protected. The company was acquired by Vista Equity Partners in 2017 and merged with New York-based Autotask and now has offices in 21 locations in the United States, Canada, China, Denmark, Netherlands, Germany, Singapore, Australia, and the UK. The company employs more than 1,300 staff and is the world’s leading provider of MSP-delivered IT solutions. TitanHQ Integrates Web Filtering Solution into Datto’s Networking Range Galway-based TitanHQ is an award-winning...

Read More
More than 90% of Hospitals and Physicians Say Mobile Technology is Improving Patient Safety and Outcomes
Jun12

More than 90% of Hospitals and Physicians Say Mobile Technology is Improving Patient Safety and Outcomes

90% of hospitals and 94% of physicians have adopted mobile technology and say it is helping to improve patient safety and outcomes, according to a recent survey conducted by Black Book Research. The survey was conduced on 770 hospital-based users and 1,279 physician practices between Q4, 2017 and Q1, 2018. The survey revealed 96% of hospitals are planning on investing in a new clinical communications platform this year or have already adopted a new, comprehensive communications platform. 85% of surveyed hospitals and 83% of physician practices have already adopted a secure communication platform to improve communications between care teams, patients, and their families. Secure text messaging platform are fast becoming the number one choice due to the convenience of text messages, the security offered by the platforms, and the improvements they make to productivity and profitability. 98% of hospitals and 77% of physician practices said they have implemented secure, encrypted email and are using intrusion detection systems to ensure breaches are detected rapidly. Many providers of...

Read More
Apple Launches API for Developers to Allow EHR Data to be Used in Care Management Apps
Jun06

Apple Launches API for Developers to Allow EHR Data to be Used in Care Management Apps

Apple has launched a new application programming interface (API) for developers that will allow them to create health apps that incorporate patients’ EHR data. Patients who load their EHR data into the Apple Health Records app will be able to pass the information directly to third party apps. The move allows app developers to create a wide range of apps that can help patients manage their care.  The first apps that will be allowed to access EHR data, if permitted by the patient, should be available in the fall to coincide with the release of iOS 12. One such app that can be used in connection with EHR data through the Apple Health Records app is Medisafe. The Medisafe app will allow patients of participating health systems to download their prescriptions lists and set reminders when their medications need to be taken. The app will also alert them to any potentially harmful interactions between their medications. Apple suggests apps could be developed to help patients manage their medical conditions. Access to EHR data will allow those apps to provide more accurate and useful...

Read More
Cofense Triage Now Helping ADT Protect its Customers from Phishing Attacks
May16

Cofense Triage Now Helping ADT Protect its Customers from Phishing Attacks

Cofense has announced it has partnered with the monitored security and interactive business automation solution provider ADT. ADT provides cybersecurity solutions to enterprises and mid-sized companies throughout the United States and Canada. The firm’s managed detection and response services allow businesses to mitigate cyber threats in real-time before they lead to a data breach. Perimeter defenses only go so far. They will block the majority of cyber threats, although no solution is capable of preventing all phishing emails from reaching inboxes. It is therefore essential for organizations to have a solution in place to allow phishing attacks to be mitigated in real time. The partnership will see Cofense Triage incorporated into ADT’s unified platform for organizing, managing, and collecting cyber intelligence. Cofense Triage is the industry’s first phishing-specific automated incident response platform. The platform provides security teams with detailed information on phishing attacks in real-time, helping them separate attacks in progress from the background noise and...

Read More
Warnings Issued Over Vulnerable Medical Devices
May14

Warnings Issued Over Vulnerable Medical Devices

Warnings have been issued by the Department of Homeland Security’s (DHS) Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) about vulnerabilities in several medical devices manufactured by Silex Technology, GE Healthcare, and Phillips. If the vulnerabilities were to be exploited, an unauthorized individual could potentially take control of the devices. Phillips Brilliance CT Scanners In early May, Phillips alerted the National Cybersecurity and Communications Integration Center (NCCIC) about security vulnerabilities affecting its Brilliance CT scanners. Phillips has been working to remediate the vulnerabilities and has been working with DHS to alert users of its devices to help them reduce risk. There have been no reports received to suggest any of the vulnerabilities have been exploited in the wild. Three vulnerabilities have been discovered to affect the following scanners: Brilliance 64 version 2.6.2 and below Brilliance iCT versions 4.1.6 and below Brillance iCT SP versions 3.2.4 and below Brilliance CT Big Bore 2.3.5 and below See ICS-CERT advisory...

Read More
Cofense Expands Technology Alliance Program to Provide Organizations with Greater Visibility into Network Security
May09

Cofense Expands Technology Alliance Program to Provide Organizations with Greater Visibility into Network Security

Over the past 12 months, the anti-phishing solution provider Cofense has significantly expanded its Technology Alliance Program, increasing its partners by 50% and adding more than 10 new technical integrations in the past year. The purpose of the Technology Alliance Program is to allow partners to offer their customers a much more comprehensive solution to deal with the growing threat from phishing. Complimentary cybersecurity solution providers can concentrate on enhancing their own capabilities, while benefiting from the specialized anti-phishing technology developed by Cofense. By linking technologies together, customers of partners will be able to offer the detailed intelligence and phishing response capabilities of Cofense Triage and Cofense Intelligence. The solutions provide detailed information that can help companies make more effective decisions about the cyber threats facing their company. The integrations with technology partners also reduce the cost for customers, simplify deployments, improve efficiency, and help them optimize their cybersecurity investments. New...

Read More
Tristar Medical Group Discovers Solution That Reduced its AWS Costs by 60%
May09

Tristar Medical Group Discovers Solution That Reduced its AWS Costs by 60%

Healthcare organizations are increasingly turning to the cloud to meet their IT needs, but while there are many advantages to be gained from migrating applications, infrastructure, and datacenter operations to the cloud, managing cloud costs remains a major challenge. Many healthcare organizations choose AWS EC2 instances for their servers. While the platform meets their needs, the high cost of running AWS EC2 instances – or equivalent instances from other providers – is forcing many healthcare organizations to scale back their cloud migration plans. The cost of running AWS EC2 instances can be considerable. Tristar Medical Group, the largest privately-owned healthcare provider in Australia, runs facilities across the country, spread across multiple time zones. Its clinics need access to servers around the clock and cloud instances were left running 24/7. Tristar soon discovered its strategy was proving prohibitively expensive. While the needs of its clinics were being met, the cost of its virtual desktop infrastructure (VDI) solution was unsustainable. The rising OpEx costs...

Read More
TitanHQ’s WebTitan Now Available Through Kaseya IT Complete Suite
May04

TitanHQ’s WebTitan Now Available Through Kaseya IT Complete Suite

TitanHQ has announced its DNS-based web filtering solution, WebTitan, has now been integrated into Kaseya’s IT Complete platform. The integration allows MSPs serving the healthcare industry to offer their clients an additional layer of protection against web-based threats such as phishing, malware, and ransomware. Via Kaseya, managed service providers can access cybersecurity solutions from some of the biggest names in the industry, including Cisco, Dell, and Bitdefender. While the platform provides MSPs with a wide range of easy-to-deploy cybersecurity solutions, one notable absence was an MSP-friendly content filtering solution. “Security is a critical service that all MSPs must deliver. Adding WebTitan to our open ecosystem of partner solutions means our customers now have even greater access to best of breed technologies to meet the needs of their business,” said Frank Tisellano, Jr., Kaseya vice president product management and design. “With growing concerns over malware, ransomware and phishing as key threats to MSP customers, WebTitan adds a highly effective layer of...

Read More
FDA Issues Alert Over Vulnerabilities in Abbot Laboratories Defibrillators
Apr19

FDA Issues Alert Over Vulnerabilities in Abbot Laboratories Defibrillators

The U.S. Food and Drug Administration has issued an alert about certain Abbott Laboratories implantable cardiac devices that have cybersecurity vulnerabilities that could potentially be exploited to alter the functioning of the devices. Certain implantable cardiac defibrillators (ICDs) and cardiac resynchronization therapy defibrillators (CRT-Ds) are affected, including the Current, Promote, Fortify, Quadra, Unify, and Ellipse families of products. The flaws do not exist on pacemakers or cardiac resynchronization pacemakers (CRT-Ps). Exploitation of the vulnerabilities is possible using commercially available equipment that could be used to send commands to the devices via radio frequencies. For the vulnerabilities to be exploited, an attacker would need to be in relatively close proximity to the device. Were an attack to happen, it would be possible to alter the function of the devices and cause them to deliver inappropriate packing and shocks or cause the batteries to deplete prematurely. Exploitation of the vulnerabilities therefore has potential to cause harm to patients. The...

Read More
JotForm Announces HIPAA Compliant Form Software
Apr14

JotForm Announces HIPAA Compliant Form Software

Healthcare providers that want to collect data from patients via websites and patient portals need to develop their own forms that meet HIPAA requirements or use HIPAA compliant form software. Regardless of the option chosen, safeguards must be incorporated into forms to ensure the confidentiality and integrity of protected health information (PHI) and satisfy the requirements of the HIPAA Security Rule. Safeguards must protect PHI throughout the collection process, both at rest and in transit. Collecting information using physical forms is practical in certain situations, although that places an administrative burden on employees who must enter form data into hospital systems. Transitioning to digital forms improves efficiency. Patients can complete prescription fill requests online, provide updates to their medical histories, and make online online. Healthcare providers can also create digital onboarding forms to efficiently sign up new patients, obtain consent forms, and create online questionnaires. Healthcare providers can avoid headaches by using third-party HIPAA compliant...

Read More
Cofense Enhances Security Awareness and Employee Conditioning Solutions
Apr07

Cofense Enhances Security Awareness and Employee Conditioning Solutions

Cofense has announced it has made several enhancements to its phishing training, simulation, and response platform to make it even easier for companies to improve their defenses against phishing attacks – The number one cybersecurity threat faced by organizations in the healthcare sector. While technological anti-phishing solutions can reduce the volume of malicious emails that are delivered to end users’ inboxes, some phishing emails will still be delivered. It is therefore essential – and a requirement of HIPAA – for employees to receive training to help them identify phishing threats. Research conducted by Cofense has shown that organizations can reduce susceptibility to phishing attacks by up to 95% through security awareness training, when training is reinforced with phishing simulations. The Cofense PhishMe training and phishing simulation platform helps organizations improve the security awareness of their employees and conditions them to respond appropriately when potentially malicious messages are received. In addition to regular additions to the library of training...

Read More
Cofense Reporter for Mobile Launched to Accelerate Reporting of Phishing Attacks
Apr05

Cofense Reporter for Mobile Launched to Accelerate Reporting of Phishing Attacks

Cofense Reporter, the phishing email reporting solution used on more than 11 million endpoints to report phishing attacks in progress, has now been released in a mobile-friendly format. The solution allows employees to report phishing attacks, regardless of the device used to check work emails. The HIPAA Security Rule requires covered entities to provide security awareness training to employees to help prevent the exposure or theft of protected health information. Training helps employees to recognize phishing threats before they lead to a data breach. Since phishing emails are likely to be sent to multiple employees, security teams need to act quickly when a phishing attack is identified. A solution that allows phishing emails to be reported by employees will help to increase the speed at which threats can be mitigated. Cofense’s solution – Cofense Reporter – allows employees to report phishing emails with a single click of the mouse. The emails are sent to security teams allowing all other instances of the email to be rapidly removed from employees’ inboxes. Phishing email...

Read More
Verizon PHI Breach Report Confirms Healthcare Has Major Problem with Insider Breaches
Apr03

Verizon PHI Breach Report Confirms Healthcare Has Major Problem with Insider Breaches

Verizon has released its annual Protected Health Information Breach Report which delves deep into the main causes of breaches, why they occur, the motivations of internal and external threat actors, and the main threats to the confidentiality, integrity, and availability of PHI. For the report, Verizon analyzed 1,368 healthcare data breaches and incidents where protected health information (PHI) was exposed but not necessarily compromised. The data came from 27 countries, although three quarters of the breached entities were based in the United States where there are stricter requirements for reporting PHI incidents. In contrast to all other industry sectors, the healthcare industry is unique as the biggest security threat comes from within. Insiders were responsible for almost 58% of all breaches with external actors confirmed as responsible for just 42% of incidents. The main reason for insider breaches is financial gain. PHI is stolen to commit identity theft, credit card fraud, insurance fraud, and tax fraud. Verizon determined that 48% of all internal incidents were conducted...

Read More
QliqSOFT Launches Snap & Fax Service to Integrate Faxing Capability into its Secure Messaging App
Mar30

QliqSOFT Launches Snap & Fax Service to Integrate Faxing Capability into its Secure Messaging App

The secure messaging platform provider QliqSOFT has launched a new clinical collaboration solution that allows physicians and nurses to integrate their current medical fax solution into their daily mobile-focused workflow. Faxing may now be an antiquated method of communication, but faxes are still extensively used in healthcare to send important patient information and are an integral part of healthcare workflows. While alternative communications services have been widely adopted in other industries, faxing still accounts for approximately three quarters of all medical communications in healthcare. The new QliqSOFT service, named Snap & Fax, brings faxing into the modern era. The service allows healthcare professionals to quickly create and fax documents directly from their mobile phones using the Qliq secure texting mobile app. The new service provides the same functions of traditional fax machines with the added convenience of sending documents directly from mobile devices and not having to print out or scan documents. The solution is based on QliqSOFT’s Snap & Sign...

Read More
Centra Health Chooses QliqSOFT to Improve Clinical Collaboration
Mar28

Centra Health Chooses QliqSOFT to Improve Clinical Collaboration

Providing quality care to patients requires collaboration with specialists from different teams within a healthcare facility, and oftentimes with third-party healthcare providers across the country. Many of those organizations use different EHR systems which makes quick and efficient communication and collaboration a major challenge. While it is possible to communicate on the telephone and send information via email and fax, those communication channels are far from efficient. The Virginia cancer care center, Centra Health, grew frustrated with communications problems and sought a solution that could be used to document and share information about the stage of lung cancer patients’ tumors with the entire care team. Centra Health considered several secure communication platforms before opting to implement QliqSOFT’s communications solution. The platform proved to be a huge success, speeding up communication and allowing the entire care team to collaborate efficiently, eliminating phone tag and frustrating communication delays. Once the communication benefits for lung cancer patients...

Read More
Palo Alto Networks Completes Acquisition of Evident.io
Mar26

Palo Alto Networks Completes Acquisition of Evident.io

Evident.io, a leader in the field of public cloud services infrastructure protection, has been acquired by Palo Alto Networks for $300 million in cash. Palo Alto Networks is already a leader in cloud security. The company has developed its VM-Series of virtualized next-gen firewalls which provide in line cloud security, Traps provides host-based protection, and API-based security covers public cloud services infrastructure. Evident.io is also a leader in the field of cloud security. The Evident Security Platform allows organizations to proactively manage cloud security risk, reduce the attack surface, and improve security posture. The platform continuously monitors Azure and AWS deployments, assesses security risks, and provides expert guidance on remediation. Palo Alto believes that the acquisition of a leader in the field of public cloud services infrastructure protection will enable the company to strengthen its position and extend its leadership in the field. Evident.io solutions will be integrated into the Palo Alto range and will allow customers to use a single approach to...

Read More
Is Liquid Web HIPAA Compliant?
Mar20

Is Liquid Web HIPAA Compliant?

Healthcare organizations searching for a hosting solution may identify Liquid Web as a potential vendor, but is Liquid Web HIPAA compliant? Can its cloud services be used by HIPAA-covered entities for hosting applications and projects that include electronic protected health information? Any healthcare organization that wants to use the cloud to host applications that use the protected health information (PHI) of patients must select a vendor whose service includes safeguards to ensure the confidentiality, integrity, and availability of ePHI that meet the requirements of the HIPAA Security Rule. Cloud service providers, including hosting companies, are classed as business associates since they potentially have access to their clients’ data. While many cloud service providers claim they do not access customers’ data, they are still classed as business associates. HIPAA-covered entities and their business associates must therefore enter into a business associate agreement with the service provider before any ePHI is uploaded to the cloud. Liquid Web Business Associate Agreements...

Read More
SafeDNS Partners with Internet Watch Foundation
Mar18

SafeDNS Partners with Internet Watch Foundation

The web filtering platform provider SafeDNS has been helping consumers and businesses control the content that can be accessed via their wired and wireless networks since 2013. SafeDNS is already a ‘Friendly WiFi’ accredited company and its solutions ensure minors can access the Internet safely and securely and avoid sexual content and other age-inappropriate websites. Now the Alexandria, VA-based firm has announced it has partnered with the Internet Watch Foundation (IWF), and through membership with the organization, has taken another step toward making the Internet a cleaner and safer place. The IWF is a not-for-profit organization committed to cleaning up the Internet and removing images and video content of child abuse, child pornography, and other criminally obscene website content. The organization searchers for images of child abuse and allows Internet users to anonymously report any websites, webpages, and forums where such images are hosted. The IWF plays a major role in taking down the content and helps to bring the perpetrators to justice. The IWF also maintains a Child...

Read More
NH-ISAC Partnership with Anomali Helps Accelerate Threat Detection and Information Sharing in Healthcare
Mar17

NH-ISAC Partnership with Anomali Helps Accelerate Threat Detection and Information Sharing in Healthcare

Anomali has partnered with the National Health Information Sharing and Analysis Center (NH-ISAC) and will be providing threat intelligence to healthcare organizations through NH-ISAC. Anomali will be providing NH-ISAC with the required tools and infrastructure to allow its members to collaborate and share threat intelligence with other members. Anomali will be providing up to date threat intelligence on new and current external threats specific to the healthcare industry allowing NH-ISAC members to take proactive steps to minimize risk. Anomali’s early warning system helps healthcare organizations respond to threats quickly when suspicious activity is detected on a network. NH-ISAC members include hospitals, health insurers, medical research institutions, pharma companies, ambulatory providers, medical device manufacturers and other healthcare stakeholders. NH-ISAC community members help each other use physical and cyber threat intelligence to inform security decisions and mitigate threats. The new collaboration between NH-ISAC and Anomali will help empower the healthcare community...

Read More
Organizations Adopting the Cloud for Data, Application and Services are Sacrificing Security
Mar15

Organizations Adopting the Cloud for Data, Application and Services are Sacrificing Security

Palo Alto Networks has released the findings of a new survey conducted on organizations in Europe and the Middle East that are actively adopting the cloud. The survey examined efforts to maintain cybersecurity across the entire organization as businesses start to utilize cloud environments to meet their data, application, and services needs. The survey has revealed the rush to the cloud has meant sacrificing security, with cloud environments not nearly as well protected as networks and endpoints. These shortcuts on security are leaving many organizations exposed to risk. Cybersecurity professionals in businesses that are actively adopting the cloud were polled and asked about the state of cybersecurity in their cloud and hybrid cloud environments. More than half of polled cybersecurity professionals– 54% – report misalignment between the cybersecurity department and the rest of the business on cloud and cybersecurity issues. While cybersecurity professionals believe security is a top priority for the public cloud, fewer than half of respondents believe current cybersecurity...

Read More
Is Google Calendar HIPAA Compliant?
Mar07

Is Google Calendar HIPAA Compliant?

Is Google Calendar HIPAA compliant? Can the time management and calendar scheduling service be used by healthcare organizations or would use of the service be considered a violation of HIPAA Rules? This post explores whether Google supports HIPAA compliance for the Google Calendar service.   Google Calendar was launched in 2006 and is part of Google’s G Suite of products and services. Google Calendar could potentially be used for scheduling appointments, which may require protected health information to be added. Uploading any protected health information to the cloud is not permitted by the HIPAA Privacy Rule unless certain HIPAA requirements have first been satisfied. A risk analysis must be conducted to assess potential risks to the confidentiality, integrity, and availability of ePHI. Risks must be subjected to a HIPAA-compliant risk management process and reduced to an acceptable level. Access controls must be implemented to ensure that ePHI can only be viewed by authorized individuals, appropriate security controls must be in place to prevent unauthorized disclosures, and an...

Read More
SonicWall Cyber Threat Report 2018 Shows 71% Decrease in Ransomware Attacks
Mar06

SonicWall Cyber Threat Report 2018 Shows 71% Decrease in Ransomware Attacks

The SonicWall Cyber Threat Report 2018 published this week indicates the volume of ransomware attacks has fallen considerably over the course of the past year, dropping from 638 million attacks in 2016 to 184 million attacks in 2017. While the fall of more than 71% is certainly good news, there has been a notable rise in the ransomware variants used and a sizeable increase in the use of other malware. Between 2016 and 2017 there was a 101.2% rise in ransomware variants in use. SonicWall Captured 2,855 unique ransomware variants in 2017 and reports an 18.4% increase in malware attacks. In 2017, the number of malware attacks rose to 9.32 billion. Ransomware attacks may be down year-over-year, but SonicWall predicts the number of attacks will rise in 2018, albeit targeting different devices. IoT and mobile attacks are likely to become much more common in 2018. SSL/TLS traffic has increased by 24% in the past year as businesses switch from HTTP to HTTPS to provide greater protection for their customers. Cybercriminals have followed suit and are increasingly using SSL/TLS encryption to...

Read More
SpamTitan v7.00 Release Sees Bitdefender Used as Primary AV Engine
Mar05

SpamTitan v7.00 Release Sees Bitdefender Used as Primary AV Engine

TitanHQ has announced the release of a new version of its leading cloud-based anti spam service. SpamTitan v7.00 includes several important updates to better protect users from malicious emails and known threats, including patches for recently discovered vulnerabilities in the ClamAV anti-virus engine. One of the notable changes in the new version is a change to the primary anti-virus engine. SpamTitan v7.00 now offers award-winning anti-malware and ransomware protection through Bitdefender. The change to the Romanian-based antivirus company is part of a growing strategic relationship with the firm that will see further collaboration over the coming weeks and months. The secondary AV engine will continue to be provided by ClamAV. TitanHQ has confirmed that support for Kaspersky AV – the primary AV engine on previous releases of SpamTitan – will stop from May 1, 2018. TitanHQ said its mission is “to provide secure, reliable and affordable security solutions to our partners and customers. Our team continually develops our product suite, implementing customer feedback and feature...

Read More
PhishMe Rebrands as Cofense and Announces Acquisition by Private Equity Syndicate
Feb26

PhishMe Rebrands as Cofense and Announces Acquisition by Private Equity Syndicate

PhishMe, the leading provider of human phishing defense solutions, has announced that from February 26, 2018, the firm will be known as Cofense. Along with the name change, the firm has announced it has been acquired by a private equity syndicate, which valued the firm at $400 million. PhishMe was formed in 2007 with the aim of developing products and services to tackle the growing threat from phishing. Employees have long been viewed as the weakest link in security, yet the human element of security defenses was often neglected. Over the years, PhishMe developed its products and services to help companies improve their last line of defense and turn security liabilities into security assets. PhishMe has helped thousands of organizations improve their defenses against phishing through training and phishing simulations. The firm has also developed a range of associated products and services including a reporting platform that has now been adopted by more than 2 million users, as well as incident response and threat intelligence services. While phishing defense is still at the heart...

Read More
Barracuda Launches New Security Insight Platform
Feb15

Barracuda Launches New Security Insight Platform

The cloud security and data protection company Barracuda has launched a new Security Insight platform that offers real-time threat intelligence and security risk data on the latest threats around the world. Having visibility into the latest threats allows security teams to take proactive steps to improve their defenses against real-world threats and assess the current threat level. Via the platform, users can view summaries and detailed information on web, email, endpoint, and network attacks tracked by Barracuda. For many companies, it is only when a cyberattack and data breach occurs that they become aware of a new threat. Threat intelligence such as that provided through Barracudas Security Insight raises awareness of attacks that are currently taking place around the globe – Awareness of those threats helps businesses take action to improve their security posture. Barracuda performs large-scale analyses of data collected from a wide range of sources which is summarized and presented through the Security Insight platform. The summaries are easy to read and provide bite-sized...

Read More
Webroot Provides DNS Web Filtering for Guest WiFi
Feb14

Webroot Provides DNS Web Filtering for Guest WiFi

Webroot has expanded its SecureAnywhere DNS filtering service to include guest WiFi networks. The new service uses the firm’s domain layer security and content filtering service and ensures high availability of WiFi access via Webroot’s DNS global servers. Businesses are now under pressure to provide free Wi-Fi access throughout their establishment, with many customers choosing businesses based on whether WiFi access is provided. However, Wi-Fi networks can be hijacked and hacked placing customers at risk. Businesses also need to take care to ensure that their WiFi connections are not abused and used for illegal activities such as copyright infringing downloads and the accessing of criminally obscene website content. Webroot’s cloud-based SaaS has been developed to solve the problem and allows businesses to easily provide clean, safe, and secure WiFi access to guests. The solution has been developed to be easy to implement and use, even by those with little technical ability. Setting up content filtering on WiFi networks requires a minor change to DNS settings to redirect guest...

Read More
Barracuda Acquired by Thoma Bravo in $1.6 Billion Deal
Feb12

Barracuda Acquired by Thoma Bravo in $1.6 Billion Deal

The cloud security and data protection firm Barracuda Networks Inc., has been acquired by the private equity investment firm Thoma Bravo in a deal worth $1.6 billion. Financing for the acquisition was provided by Goldman Sachs & Co. LLC, Credit Suisse, and UBS Investment Bank. Barracuda will continue to operate as a privately held company. Barracuda shareholders will receive $27.55 per share of common stock they hold. “Thoma Bravo has an excellent history of investing in growing security businesses, and this transaction speaks to the value and strength of Barracuda’s security platform, which helps customers protect and manage their networks, applications, and data. I expect that our employees, customers, and partners will benefit from this partnership,” said BJ Jenkins, chief executive officer of Barracuda. Barracuda currently protects more than 150,000 customers from email, web, and network attacks with its platform used to protect workloads and applications from the full range of malicious attacks. Its cybersecurity solutions can be centrally managed in...

Read More
PhishMe (Now Cofense) Wins Five Cybersecurity Awards
Feb10

PhishMe (Now Cofense) Wins Five Cybersecurity Awards

PhishMe (now Cofense) has collected five 2018 Cybersecurity Excellence Awards for its phishing defense solutions. The Cybersecurity Excellence Awards program is produced by Cybersecurity Insiders in partnership with the Information Security Community on LinkedIn. The awards program recognizes excellence in the field of cybersecurity with awards being given to companies that have demonstrated excellence, leadership, and innovation in information security. This year there were more than 400 entries across 70 different categories. The awards winners were selected based on the strength of their nominations and members of the Information Security Community are required to vote for their best loved products and services. The finalists for the awards were announced on February 1 and the winners on February 7. To even be named as a finalist confirms that a company has developed exceptional products and services that help businesses protect their networks and data against cyberattacks. Cybersecurity Insiders notes that “All winners and finalists reflect the very best in today’s...

Read More
Symantec Offers Solution for Filtering Uncategorized Websites
Feb06

Symantec Offers Solution for Filtering Uncategorized Websites

Organizations that have implemented URL filtering to control the websites that employees are allowed to access can easily filter websites by category. However, not all websites are categorized, which creates a problem with URL filtering. Without a category, applying category controls is not possible. Now, Symantec has offered a solution to the problem. When new websites are created it takes time for categories to be applied and the lag poses problems for URL filtering. The solution chosen by many organizations has been an all or nothing approach. Block all uncategorized websites or allow them to be accessed. When a category is assigned to the sites, they will be subjected to standard filtering controls. The allow all approach could permit malicious websites to be accessed, while the deny all approach means potentially useful websites will be unnecessarily blocked. While IT departments may be willing to accept the latter, it can result in an increase in support calls to the helpdesk. The Blue Coat Web Filter URL database is comprehensive, although the same problem with uncategorized...

Read More
TitanHQ Partners with HTG Peer Groups
Feb04

TitanHQ Partners with HTG Peer Groups

At the HTG Peer Groups Q1 quarterly meeting in Las Vegas, TitanHQ, the leading provider of cloud-based web filtering and anti-spam solutions, announced it has partnered with HTG: The international coaching, consulting, and peer group organization. The new partnership sees TitanHQ become a Gold vendor, with its cybersecurity solutions made instantly available to HTG community members. HTG was formed in 2000 with the aim of helping businesses expand and realize their full potential. HTG consultants provide insights and share wisdom with business leaders to help them create the accountability and structure necessary to make their businesses a success. Through HTG, business leaders can maximize their potential using tried and tested strategic systems. The path to profitability and success inevitably involves some setbacks and having a partner to provide support and guidance through difficult times can make a big difference. Many companies also require help to avoid common problems: problems that can cause significant, and sometimes catastrophic, losses. One area of concern voiced by...

Read More
KLAS Rates QliqSOFT ‘Top Performing Vendor’ in its 2017 Secure Communications Report
Jan30

KLAS Rates QliqSOFT ‘Top Performing Vendor’ in its 2017 Secure Communications Report

The Healthcare IT data and insights company KLAS Research has released the 2017 KLAS Secure Communications Report. The report examines current levels of adoption of secure communications platforms in the healthcare industry together with how those solutions are performing in a clinical setting. KLAS Reports are relied upon by healthcare organizations to provide in-depth information on the best IT solutions on the market, saving providers valuable time when searching for a suitable IT solution to meet their needs. To create its reports, KLAS Research analysts interview healthcare providers and gather feedback on the performance of software solutions, how easy they are to implement and use, the level of service and support offered by solution providers, and what healthcare providers think of the solutions. KLAS also identifies the market leaders and solution providers that have gone the extra mile and have incorporated a comprehensive range of features into their software solutions to better serve the healthcare industry. The 2017 KLAS Secure Communications Report covers 15 top...

Read More
Fortinet Launches New Operational Technology Security Solution for Critical Infrastructure Organizations
Jan18

Fortinet Launches New Operational Technology Security Solution for Critical Infrastructure Organizations

Cyberattacks on critical infrastructure are becoming much more common. Cybersecurity reports suggest SCADA/ICS security breaches have been experienced by more than 50% of critical infrastructure organizations in the past 12 months alone. Those attacks can result in major disruption to essential services including energy, water, and healthcare. Unfortunately, there are major differences between traditional information technology and operational technology (OT). Consequently, most enterprise-class security solutions do not have visibility into OT systems due to the highly specialized nature of the technology. Without visibility, it is not possible to effectively defend against cyberattacks on OT systems. However, Fortinet has now developed a security solution that addresses the unique challenges of protecting operational technology. Its latest offering unifies the management and administration of both OT and IT via the Fortinet Security Fabric. The Fortinet Security Fabric allows organizations to deploy advanced cybersecurity controls to keep their OT systems, control systems, and...

Read More
Cyren and Carvir Partnership Sees SaaS Web and Email Security Solutions Offered to MSP Partners
Jan10

Cyren and Carvir Partnership Sees SaaS Web and Email Security Solutions Offered to MSP Partners

Cybersecurity firm Cyren has announced it has formed a new distribution partnership with Carvir that will see the firm’s web and email Security SAAS platforms offered to Managed Service and IT Service Providers. Carvir is a leading global distributor of monitoring and managed cybersecurity services for the IT services and MSP channel. Carvir already offers a wide range of cybersecurity solutions to MSPs and IT service providers, although there was a gap in its DNS, email, and web security solutions. Carvir now has more than 500 MSP partners who serve the needs of tens of thousands of business customers by providing managed security services. Over the past eight months Carvir has been searching for a new provider of cloud-based web security services. There was no shortage of powerful web security solutions, but most web security solutions were not MSP friendly, having been developed for enterprises rather than service providers. Many solutions lacked the multi-tenant capability or pricing model required by MSPs. By adding Cyren to our portfolio, we are delivering a superior security...

Read More
Barracuda Networks Acquires Security Awareness Firm PhishLine
Jan03

Barracuda Networks Acquires Security Awareness Firm PhishLine

Barracuda Networks has announced it has acquired the security awareness and anti-phishing training firm PhishLine. The deal will see PhishLine’s training and phishing simulation platform incorporated into the Barracuda range of AI-driven anti-phishing solutions to provide more comprehensive protection for its customers. Technological defenses against spear phishing and phishing help companies to reduce risk to a reasonable level; however, no solution can be 100% effective against the barrage of spam and malicious emails now being sent by threat actors around the globe. Email is now the leading attack vector and highly sophisticated tactics are now used to bypass security controls and target employees. Social engineering techniques are used to fool employees into revealing their login credentials and install malware and ransomware. Security awareness training is therefore an important part of any cybersecurity strategy. Businesses must ensure that the workforce has the necessary skills to identify new threats and take the appropriate action. This is where PhishLine excels. The...

Read More
Email Archiving Service Added to the Cyren Cloud Security Platform
Jan03

Email Archiving Service Added to the Cyren Cloud Security Platform

Cyren, a provider of DNS, email, and web security solutions, has announced the inclusion of a new email archiving service in its Cloud Security Platform. The platform can be used to keep business email messages secure while ensuring compliance with state and federal email retention regulations. Cyren’s Security-as-a-Service platform combines web security, email security, DNS security, cloud sandboxing, and email archiving into a single cloud-based platform that can be accessed, monitored, and managed through a single web-based administration control panel. The new release comes in response to requests by customers to provide complimentary services to the platform related to email management. Being cloud-based, the solution allows additional services to be easily rolled out to customers, something that would not be possible with appliance-based solutions. The latest addition helps organizations meet their email management compliance obligations, safely and securely store vast quantities of emails without the need for on-premises storage, and ensures all messages can be quickly and...

Read More
Whitelist Only Feature Added to Cisco Umbrella
Dec30

Whitelist Only Feature Added to Cisco Umbrella

Cisco has announced it has added a new whitelist only feature to Cisco Umbrella. The whitelist only option allows organizations to restrict Internet access to a small number of secure websites, and block access to the rest of the Internet. User are able to access the whitelist only option via their Umbrella dashboard. When the whitelist only option is set, all domains will be blocked by default and will be inaccessible. Any attempt made by an end user to visit a website that has not been added to the whitelist will be blocked before a connection is made. Any individual that attempts to access an unauthorized website would be presented a block page or the user could be directed to a specific URL. The setting can be applied to an existing rule or a new rule can be created. The whitelist only option can be set for the entire organization, for a particular network, for user groups, individual users or certain devices. The whitelist option will disable category lists and blocklists and will only allow sites to be added via allow lists. The whitelist can be used for domains or URLs....

Read More
SafeDNS Partners with Router Manufacturers to Provide WiFi Control Straight out of the Box
Dec11

SafeDNS Partners with Router Manufacturers to Provide WiFi Control Straight out of the Box

SafeDNS has partnered with router manufacturers to offer safe WiFI access straight out of the box. Most WiFi routers do not incorporate the necessary controls to allow the filtering of Internet content without the addition of a third-party solution or controls applied at the ISP level. When web-filtering solutions are included, they tend to be basic and typically do not include advanced capabilities such as SSL inspection, so are restricted to blocking HTTP sites. As more businesses mover over to HTTPS, these web filtering controls cease to be effective. Cybercriminals are also making the move to HTTPS, so the failure to decrypt, inspect, and re-encrypt traffic could leave businesses and consumers exposed to online threats. Further, most routers with Internet access controls included do not offer the same granular control as third party solutions and custom filtering rules cannot be applied.  Even in a home environment this can cause problems, as it is not possible to apply different settings for individual users. The all or nothing approach means the same restrictions for a...

Read More
TitanHQ Partners with Etihad Stadium to Secure Guest WiFi Network
Nov24

TitanHQ Partners with Etihad Stadium to Secure Guest WiFi Network

TitanHQ has announced it has partnered with the Etihad Stadium in Melbourne and is providing its client-less DNS Internet filtering solution to secure the stadium’s network of more than 700 WiFi access points. As a modern stadium, it was necessary to provide WiFi access to sports fans, but also to ensure that WiFi could be accessed safely and securely. The stadium operators needed to implement security controls to prevent fans from inadvertently downloading malware, visiting phishing websites, or viewing website content that was inappropriate in a public location. A client-based or appliance-based system would have been impractical, so DNS filtering was the natural choice. A DNS-based URL filtering solution would allow accessible web content to be carefully controlled without latency, ensuring fast Internet access speeds could be enjoyed by all visitors to the stadium. The Etihad stadium chose TitanHQ’s WebTitan Cloud for WiFi to protect its 704 high-speed, high-capacity Internet access points spread throughout its 53,359-seater venue and corporate hospitality areas. The Web...

Read More
Palo Alto Confirms Cybersecurity is a Priority in the NHS
Nov14

Palo Alto Confirms Cybersecurity is a Priority in the NHS

Following the WannaCry ransomware attacks that crippled many NHS Trusts, Palo Alto Networks commissioned a survey with Vanson Bourne on 100 IT decision makers in the NHS. The aim of the survey was to investigate the current state of cybersecurity in the NHS, determine how the NHS is prepared for GDPR data protection rules, and gauge the level of patient trust in NHS data handling. Data Security is Now Being Prioritized Cybersecurity is a critical if the NHS is to realize the full potential of digitalization to make improvements to patient care and to achieve cost savings. 90% of respondents believe cybersecurity must be prioritized to achieve those aims and 83% said cybersecurity was essential to make significant long-term savings. On Average, respondents believed an average of £14.8 million could be saved each year with appropriate cybersecurity investment. While data security is vital, there are other benefits to improving cybersecurity. 65% of respondents believe better cybersecurity would improve patient trust, 49% believe it would allow processes to be streamlined, and 45%...

Read More
Almost Half of IT Decision Makers Say Cybersecurity Still Not a Priority for Board Members
Oct10

Almost Half of IT Decision Makers Say Cybersecurity Still Not a Priority for Board Members

Fortinet has published the results of its Global Enterprise Security Survey. The report indicates board members are still not taking sufficient interest in cybersecurity, even with the high volume of cyberattacks that are now being reported. The survey was conducted on 1,801 IT decision makers with responsibility/visibility of IT security. The global survey was conducted in 16 countries including the United States, Canada, Germany, France, Australia, India, and the UK. 48% of respondents said they did not believe cybersecurity was a top priority up for discussion by the board, with 77% or respondents believing the board should be scrutinizing IT security much more carefully. IT security is now viewed as a strategic board decision rather than simply an IT investment and a matter for the IT department to deal with. The need for board involvement has been highlighted by the rapid rise in cyberattacks in recent years. 85% of businesses have experienced a security breach in the past two years. The most common attacks involved malware and ransomware. Malware/ransomware attacks had been...

Read More
SonicWall Reports 524% Increase in Malware Variants in the Past 6 Months
Oct04

SonicWall Reports 524% Increase in Malware Variants in the Past 6 Months

There has been 524% growth in the number of malware variants captured by SonicWall in the past six months and a 57% increase in new malicious files analyzed each day. More than 1,000 new malware variants are now used to attack SonicWall customers each day. The global Wannacry and NotPetya attacks were headline news in 2017 and claimed many victims, but the attacks continued as news coverage died down. New strands of Wannacry and NotPetya malware have been developed and continue to be used to attack organizations that have failed to update and secure their systems. There has also been a significant rise in ransomware cyberattacks on small businesses in 2017. Those attacks can be devastating. A study conducted by Osterman research indicates the number of SMBs forced out of business as a result of ransomware attacks has increased by 22%. With the average cost of a data breach now $3.62 million that comes as no surprise. The massive increase in new malware and ransomware variants places a strain on traditional cybersecurity solutions. The rise in attacks and the high cost of mitigation...

Read More
LightSpeed Systems Incorporates New Options for Filtering SSL and Google Services
Sep28

LightSpeed Systems Incorporates New Options for Filtering SSL and Google Services

One of the biggest challenges for organizations wishing to filter the internet is inspecting encrypted websites without violating the privacy of users. Encryption is important to protect the privacy of web users, but for schools, it poses a challenge. Information such as credit card details need to be protected by encryption, but it is also important for SSL websites to be monitored and web access managed to ensure students are protected. Many schools have problems determining how SSL websites can be decrypted, analyzed, and re-encrypted to protect students with their existing web filter. Schools also want to filter individual YouTube videos, rather than having to block the entire website and prevent students from accessing important educational material. They also want to have visibility into Google searches and block certain searches from generating search results. Similar controls must also be implemented to prevent certain Google images from being displayed. Most schools get around the problem by using proxies, certificates and PAC files, although such measures are not easy to...

Read More
SonicWall Responds to Increasing Cyber Threats with Major Expansion of Cybersecurity Solutions
Sep27

SonicWall Responds to Increasing Cyber Threats with Major Expansion of Cybersecurity Solutions

The massive rise in new ransomware and malware variants, and the increasing sophistication of cyberattacks on businesses have been accompanied by unprecedented innovation at SonicWall, which has rapidly expanded its range of cybersecurity solutions in response to the growing demand for more powerful solutions. SonicWall has now released its new SonicOS operating system, which includes more than 50 new features to enhance security and is the biggest customer-driven release in the history of the company. The SonicOS (v6.5) powers SonicWall’s Automated Real-Time Breach Detection and Prevention Platform. The new release has enhanced threat API capabilities that allow businesses to automate security systems and incorporate third-party intelligence feeds. New wireless features improve connectivity for an increasingly mobile workforce and help security teams enforce their policies across the entire organization. Advanced networking and connectivity capabilities have also been introduced to provide uninterrupted threat protection for connected networks of all types and sizes. The new...

Read More
Webroot Quarterly Threat Trends Report Reveals 1.5 Million New Phishing Sites Created Each Month
Sep22

Webroot Quarterly Threat Trends Report Reveals 1.5 Million New Phishing Sites Created Each Month

Webroot has published its Quarterly Threat Trends Report for Q2, 2017 which highlights the growing threat from phishing. On average, each month in Q2 saw 1.385 million new phishing webpages created each month, although there was a major spike in May when 2.3 million new phishing websites were detected. On average, more than 43,000 new phishing websites are created each day. The quality of the sites has also increased. It is now virtually impossible to tell from the content of the page whether the website is genuine. The websites are highly realistic and use the same imagery, color schemes, logos and graphics as the sites they mimic. The only tell-tale sign that the websites are not genuine are the domain names used. The most commonly spoofed brand is Google. 35% of phishing sites impersonate Google to obtain Gmail and Google Drive credentials. Chase bank is the second most spoofed brand accounting for 15% of sites followed by Dropbox (13%), PayPal (10%), Facebook (7%), Apple (6%), and Yahoo and Wells Fargo (4%). The websites have a common purpose. To fool consumers and business...

Read More
Cyren Collects Two Cybersecurity Breakthrough Awards for Web and Email Security
Sep20

Cyren Collects Two Cybersecurity Breakthrough Awards for Web and Email Security

At this year’s Cybersecurity Breakthrough Awards, Cyren was honored with two awards in the email and web security categories – The only company in this year’s program to collect two awards. The Cybersecurity Breakthrough Awards program was developed to recognize and reward companies that lead the field in IT security and have shown a high level of innovation and have brought exciting, powerful, and reliable cybersecurity products to the market. This year saw more than 2,000 companies and products nominated for the awards with cybersecurity companies from 12 countries competing. Nominees in categories such as email security, web security, threat detection, risk management, APT protection, identity management, mobile security, and risk management were assessed by a panel of independent judges drawn from the information security industry.  Nominees were narrowed down to produce a shortlist of finalists and category winners. Cyren, a provider of web, email, and DNS security solutions, was honored with Hosted Email Security Solution of the Year Award in the email security category....

Read More
CyberSecurity Breakthrough Names SonicWall ‘Cybersecurity Company of The Year’
Sep20

CyberSecurity Breakthrough Names SonicWall ‘Cybersecurity Company of The Year’

Each year, CyberSecurity Breakthrough runs an award program that recognizes the efforts and achievements of technology companies, their products, and the people who drive innovation. The awards program covers the full spectrum of cybersecurity solutions including email, web and cloud security, threat detection, fraud prevention, risk management, firewalls, and UTMs across 16 product categories. Each year, the scale of the awards program grows. More than 2,000 nominations were received for this year’s awards program, with companies coming from 12 countries around the world. Those nominations were assessed by a panel of independent expert judges from the cybersecurity community who whittled down the field and selected the companies, products, and people that are having the biggest impact in their respective fields. This year, awards were given to some of the biggest names in cybersecurity including Paloalto networks, Crowdstrike, Proofpoint, Trend Micro, CipherCloud, Avast, and Lookout. There were more than 60 awards issued in this year’s program, with SonicWall chosen as the overall...

Read More
PhishMe Report Shows Organizations Are Struggling to Prevent Phishing Attacks
Sep19

PhishMe Report Shows Organizations Are Struggling to Prevent Phishing Attacks

Organizations are struggling to prevent phishing attacks, according to a recently published survey by PhishMe (now Cofense). The survey, conducted on 200 IT executives from a wide range of industries, revealed 90% of IT executives are most concerned about email-related threats, which is not surprising given the frequency and sophisticated nature of attacks. When attacks do occur, many organizations struggle to identify phishing emails promptly and are hampered by an inefficient phishing response. When asked about how good their organization’s phishing response is, 43% of respondents rated it between totally ineffective and mediocre. Two thirds of respondents said they have had to deal with a security incident resulting from a deceptive email. The survey highlighted several areas where organizations are struggling to prevent phishing attacks and respond quickly when phishing emails make it past their defenses. PhishMe also notes that many first line IT support staff have not received insufficient training or lack the skills to identify phishing emails. Consequently, many fail to...

Read More
IWF Blacklist Incorporated into a Category on Cisco Umbrella
Sep08

IWF Blacklist Incorporated into a Category on Cisco Umbrella

Cisco has announced that its users can now quickly and easily block all employees from accessing websites containing images of child sexual abuse. A blacklist of domains and URLs containing images of child abuse is maintained by the UK’s Internet Watch Foundation (IWF). The IWF is a non-profit organization dedicated to removing all online images of child sexual abuse and preventing child sexual content from being accessed via the Internet. The list contains domains and URLs hosted all over the world that have been discovered to contain these sexual images, in addition to non-photographic images of child abuse hosted in the UK. In addition to searching the Internet for illegal sexual images of children, the charity mans a hotline that allows anyone to report websites found to be hosting child sexual images. Those reported URLs and domains are then added to the blacklist. The IWF supplies partners with up-to-date blacklists allowing them to easily block the illegal content via their filtering technologies. Cisco has now partnered with the IWF and has adopted its list and added it as...

Read More
Partnerships with Hospitals, Schools and Insurance Firms Fuels Growth at TitanHQ
Aug28

Partnerships with Hospitals, Schools and Insurance Firms Fuels Growth at TitanHQ

TitanHQ has announced it is enjoying sustained growth that has been fueled by new partnerships with hospitals, school districts, and insurance firms who have chosen to secure their wired and wireless networks with the WebTitan web filtering solution and use the firm’s cloud-based anti-spam service to keep their inboxes spam free. Over the course of the past 12 months, TitanHQ has been increasing its healthcare clients. The healthcare industry is being targeted by hackers and ransomware and malware attacks have soared in recent months. Two of the main ways that malware and ransomware is installed is via malicious links in emails and drive-by downloads, which can be blocked with WebTitan. The latest health system to sign up and use WebTitan is the European Hospitals Group – a leading health system in Brussels in Belgium. The multi-lingual hospital group operates two facilities in Uccle and the Etterbeek/European Quarter and employs more than 1,800 staff. The hospital has now implemented WebTitan to prevent web-based malware attacks and to control the content that can be...

Read More
Security Awareness Firm Securecast Acquired by Webroot
Aug16

Security Awareness Firm Securecast Acquired by Webroot

Webroot has announced it has completed the acquisition of Securecast – A security awareness and training platform that can be used by businesses to create a security culture and prepare employees for phishing attacks. Webroot already offers businesses a range of solutions to counter the threat from phishing, although even with layered defenses and technological solutions, some phishing emails will slip through the net. It is therefore essential for businesses to ensure that they take steps to address the human factor in phishing attacks and conduct security awareness training, educate employees on cybersecurity best practices, and train staff how to recognize phishing emails. The acquisition of Securecast will allow Webroot to provide a more comprehensive suite of anti-phishing solutions to its customers. The company has rebranded the platform Webroot Security Awareness Training and will make it generally available for all Webroot customers in the fall when it will be incorporated into the Webroot SecureAnywhere® business portfolio. Over the next couple of months Webroot plans to...

Read More
New Web Filter Bypass Controls Incorporated into Web Filter Longhorn
Aug15

New Web Filter Bypass Controls Incorporated into Web Filter Longhorn

The use of a web filter is essential in many industries, especially in education where it is necessary to block access to adult content and images for CIPA compliance. Implementing a web filter can help to ensure users are prevented from accessing certain categories of web content, although there will be many individuals that attempt to bypass web filter controls and gain access to restricted content. There are several publicly available tools that can be used to bypass web filtering controls, and a quick google search is all it takes to find them. Schools need to have visibility into these attempts and ideally, be able to block all attempts to bypass the web filtering controls. When attempts are made to bypass the web filter, instant alerts are required to allow rapid action to be taken to terminate sessions. Preventing the use of blocking tools such as Ultrasurf, Hotspot Shield, and Psiphon can be problematic with many web filters; however, Lightspeed Systems has a solution. In the latest version of Web Filter Longhorn, users are given better visibility to allow them to rapidly...

Read More
SafeDNS Earns AV-Comparative Award for Web Filtering
Aug14

SafeDNS Earns AV-Comparative Award for Web Filtering

The independent testing lab AV-Comparatives conducts extensive tests of anti-virus and other security software to provide businesses and consumers with advice on the top security products. In this year’s tests on parental control and web filtering solutions, SafeDNS was ranked in the top three out of all parental control solutions under test. SafeDNS provides consumers with the ability to carefully control the types of content that can be accessed via their home networks, with the solution also offered to businesses to prevent employees from accessing content not suitable for the office. One of the main uses of the solution at home and in the workplace is to prevent pornography from being accessed – An area where the solution performs particularly well, blocking 99.8% of adult content in the AV-Comparatives test. No other solution under test performed as well at filtering adult content. Following tests in previous years, SafeDNS has made improvements to its category filters in other areas, notably the blocking of gambling sites and weapons-related content. The solution blocked 94%...

Read More
Forcepoint Adds New Capabilities to CASB, Web, and Email Security Solutions
Aug01

Forcepoint Adds New Capabilities to CASB, Web, and Email Security Solutions

Forcepoint has announced its security solutions now incorporate new behavior-driven controls to help protect critical business data, intellectual property, and employee devices. Forcepoint CASB, Web Security and Email Security have all been updated and now have new capabilities. New CASB analytics have been incorporated to help organizations reduce the time it takes to identify data breaches. Forcepoint cites Gartner data, which shows the dwell time between an attack and discovery is an average of 99 days. The longer a breach continues before it is discovered and mitigated the higher the cost to the organization. By using data and analytics it is possible to greatly reduce the time between an attack and detection, and thus reduce the cost and damage caused. Forcepoint CASB helps organizations study the actions of users to identify risky behavior and vulnerabilities, allowing IT teams to take action to be taken before a breach occurs. The solution also helps IT teams identify anomalies which are indicative of a data breach and take rapid action to mitigate attacks. The new...

Read More
96% of SMBs Susceptible to External Cybersecurity Threats
Aug01

96% of SMBs Susceptible to External Cybersecurity Threats

Webroot has published the results of a new study that examined how well small to medium sized businesses are prepared to deal with cyber threats. The study revealed the majority of SMBs are not currently equipped to deal with external cybersecurity risks and believe they are susceptible to external cybersecurity threats. 600 IT decision makers in the UK, USA, and Australia were surveyed by Wakefield Research on behalf of Webroot. All respondents were employed by small to medium sized businesses with between 100 and 499 employees. 96% of respondents said they believe their organization will be susceptible to cyber threats this year and while their organization is aware of the current threat landscape and the growing number of threats, 71% of respondents said they are not well prepared to address them. The main concerns are malware infections, mobile attacks, and phishing incidents. 56% of respondents were most concerned about malware, 48% most concerned about threats to company-owned or BYOD mobile devices, and 47% were particularly concerned about phishing. The fallout from a...

Read More
Securly Announces New Initiative and Partnership to Benefit Education Sector
Jul13

Securly Announces New Initiative and Partnership to Benefit Education Sector

The San Jose, CA-based web filtering solution provider Securly has announced a new partnership with WiscNet to better protect Wisconsin students from harmful Internet content. The firm’s standard Chrome-based web filtering solution has also been made available free of charge to K12 schools across the United States. WiscNet Partnership Sees Discounts Offered on K12 Web Filter Solutions WiscNet is a membership organization that offers education services to public and private schools throughout Wisconsin. A partnership with Securly is allowing existing and new members to obtain significant discounts on the Securly web filtering service. Securly’s web filter has primarily been developed for K12 schools and educational institutions to make Internet filtering more straightforward. The cloud-based filter can be used to secure devices connected to school and other Wi-Fi networks and prevents students from visiting inappropriate websites. The solution can also monitor social media accounts and email activity and generate alerts of potential self-harm and bullying. The solution also includes...

Read More
Symantec to Acquire Fireglass to Improve Protection from Ransomware, Malware and Phishing Attacks
Jul08

Symantec to Acquire Fireglass to Improve Protection from Ransomware, Malware and Phishing Attacks

The cybersecurity giant Symantec acquired the web security firm Blue Coat last year in a deal worth $4.65 billion. That was followed by the acquisition of the identity theft protection company Lifelock in a deal worth $2.3 billion in November. Now the Security software giant has announced a further acquisition: the Israeli cybersecurity startup Fireglass. At this stage the price and terms of the acquisition deal have not been disclosed. The acquisition of Blue Coat has allowed Symantec to move into the enterprise web security market, LifeLock has helped improve its footprint in the consumer market, and the Fireglass acquisition will allow the firm to improve its malware, ransomware, and phishing protection offerings. Tel Aviv-based Fireglass was founded in 2014 and has developed innovative technology that helps companies protect against malware, ransomware, and phishing threats. Phishing emails target a weak point in security defenses: Employees. While email security solutions can be deployed to block these threats from reaching inboxes, many malicious emails are still delivered....

Read More
GFI Software Recognized for Quality of Support and Product Documentation
Jul07

GFI Software Recognized for Quality of Support and Product Documentation

GFI Software has been recognized for the quality of its customer support and product documentation by the Society of Technical Communications (STC). The STC is an international professional association that evaluates technical communications between companies and customers, and assesses the standard of technical support, product documentation, and company training materials. The aim of the STC is to advance technical communications and promote better content and information management via technical processes. The non-profit organization helps businesses improve their technical support across all media to ensure customers can use products safely, securely, effectively and get the best value from their investment. This year, the GFI Software team has collected four STC awards in the international and regional categories of the STC awards program. In the User Support: Help category, GFI Software collected a Distinguished Technical Communication Award and a Best of Show Award in the regional subcategory, with its regional support also competing with the GFI Help System. The GFI Help...

Read More
Symantec Included in Leader’s Magic Quadrant for Secure Web Gateways
Jul03

Symantec Included in Leader’s Magic Quadrant for Secure Web Gateways

The cybersecurity firm Symantec has been included in the leader’s Magic Quadrant for Secure Web Gateways by Gartner. This year, the company is the only solution provider in the leader’s quadrant that offers both cloud-based and on-premise web gateway solutions. Only one other company was included in the leader’s quadrant this year – Zscaler. Zscaler was rated highest for completeness of vision, while Symantec was rated highest for ability to execute. Three companies were included in the Challenger’s Quadrant, and 5 in the Nice Player’s Quadrant. This is the 10th consecutive year that the technology behind Symantec’s secure web gateway has been included in the Leader’s Quadrant. Symantec was included in 2016 and 2017, and as Blue Coat in earlier years. Symantec acquired Blue Coat last year. Gartner assesses companies for their completeness of vision and ability to execute, with the assessment based on 15 different criteria. The combined assessments across those criteria resulted in Symantec receiving the highest rating. Secure web gateways incorporate URL filtering to control the...

Read More
Kenilworth Update Improves Authentication on Smoothwall Web Filter
Jun29

Kenilworth Update Improves Authentication on Smoothwall Web Filter

The latest update to the Smoothwall web filter sees improvements made to authentication and safeguarding, along with the option of adding a Google sign-in button to the login page to allow access with a single click. One of the main features to be added to the Smoothwall’s secure web gateway web filter by the Kenilworth update is the incorporation of IDex identity indexing, which makes the process of authenticating users far simpler. IDex is also a more scalable identity checking mechanism that authentication. IDex does not depend on a connection to domain controllers for authenticating users and there are no delays to user access with this new identification system. At the heart of IDex is the IDex Directory – a database housed on a Smoothwall appliance that contains all the necessary user identity information. IDex Directory records the username, IP address, groups, and logged-in timestamp for each user, and integrates that information with all Smoothwall services that require identity verification. Data are also replicated across nodes. Workstations have the IDex Client running...

Read More
Fortinet Named Leader in Gartner Magic Quadrant for Unified Threat Management
Jun28

Fortinet Named Leader in Gartner Magic Quadrant for Unified Threat Management

For the 8th consecutive year, Fortinet has been named a leader in Gartner’s Magic Quadrant for Unified Threat Management for its SMB multi-function firewalls. The Magic Quadrant is a graphical representation of competitive positioning, broken down into four quadrants with technology providers ranked as leaders, visionaries, niche players, and challengers. Challengers rank highly for their ability to execute in today’s marketplace, yet they lack understanding of the direction the market will move in the future. Niche players lack focus and do not innovate or outperform other companies, yet may still offer products well suited to many businesses. Visionaries have an excellent grasp of the market but are not executing to their full potential. The leader’s quadrant includes companies that execute well against their current vision and have an excellent understanding of the market and where it is going. The Magic Quadrant provides companies with a view of the relative positions of each player in the market and allows them to determine which companies are performing the best and which are...

Read More
Palo Alto Networks Launches New Cloud-Based Security Service for Mobile Users
Jun14

Palo Alto Networks Launches New Cloud-Based Security Service for Mobile Users

Palo Alto Networks has launched a new cloud-based security service that can be used to protect remote locations and users of mobile devices via the Palo Alto Networks Next-Generation Security Platform and apply security controls such as URL Filtering and Threat Prevention. Many businesses operate across multiple locations and have a highly distributed workforce. The new Palo Alto Networks GlobalProtect cloud service makes it easier for businesses to secure remote networks and protect mobile users without backhauling traffic to the corporate network or using multiple point products. The new Palo Alto Networks GlobalProtect cloud service protects all employees via the Palo Alto Networks Next-Generation Security Platform, regardless of where they are located. The GlobalProtect cloud service allows administrators to easily add new locations and mobile workers and implement and update security policies as required. The service is always on and kept up to date and helps organizations ensure consistent security for the entire organization, regardless of location or the devices used. With...

Read More
Expanded Webroot and ConnectWise Partnership Help Customers Block Web-Based Threats
Jun07

Expanded Webroot and ConnectWise Partnership Help Customers Block Web-Based Threats

Webroot has expanded its partnership with ConnectWise which will see its Webroot SecureAnywhere® DNS Protection platform offered to ConnectWise customers to help them block web-based threats more effectively. Webroot SecureAnywhere® DNS Protection is a web filtering solution that can be used by businesses to carefully control the websites that can be accessed by employees. Webroot uses IPv4 and IPv6 addresses to classify more than 95% of the Internet at least three times a day, with sites added to one or more of the 80 categories used by the platform. Users can select which categories they allow their employees to access with controls applied for specific users, groups, or for the entire organization. In addition to offering category filtering controls the solution also blocks websites known to host malware and phishing websites. Since more than 85% of malware infections occur via the web, by controlling the websites that employees can access it is possible to significantly improve an organization’s security posture and protect against malware, ransomware, keyloggers, and spyware....

Read More
TigerText Secure Messaging Platform Update Helps Optimize Clinical Workflow
Jun03

TigerText Secure Messaging Platform Update Helps Optimize Clinical Workflow

TigerText, the leading HIPAA-compliant secure text messaging platform provider, has announced a new release of its platform. The updated version of the TigerText platform includes a host of new features that improve usability and help reduce the costs of care delivery and improve clinical workflow efficiency.     The new features include an automatic message forwarding function, priority messaging feature and a new standalone desktop application. The desktop app helps healthcare professionals coordinate patient care more efficiently and speed up the exchange of information. TigerText collects comments from platform users via its voice-of-the-customer program. Hundreds of comments have been submitted which were reviewed and evaluated by the product development team. Requests for updates and new features were prioritized to ensure the most beneficial changes were brought to market quickly. The full list of updates for Android, iOS and desktop applications are detailed below: New Desktop App: The new app includes automatic updates and alerts and allows the TigerText...

Read More
Purple Move on WiFi Security Sets Example for All Public WiFi Deployments
May25

Purple Move on WiFi Security Sets Example for All Public WiFi Deployments

Wireless networks offer many benefits to healthcare organizations. Healthcare professionals can access networks and data from any location using portable devices, without the need to plug in to the network. Many medical devices connect wirelessly to WiFi networks improving clinical workflows. However wireless networks can also introduce risks. If any PHI is transmitted over wireless networks, HIPAA requires appropriate controls to be applied to safeguard the confidentiality, integrity and availability of PHI. If WiFi networks lack appropriate security, unauthorized individuals could intercept WiFi packets and view sensitive data, including protected health information. Securing internal WiFi networks is therefore essential. The failure to secure WiFi networks would place an organization at risk of a HIPAA penalty. The risk of a HIPAA violation or data breach is a real concern for healthcare organizations. Security concerns have prevented many hospitals from offering WiFi access to patients, even though offering WiFi can improve the patient experience. Many healthcare organizations...

Read More
TitanHQ Partnership with ADTRAN Enables MSPs to Deliver Cloud-Based Security Solutions
Apr11

TitanHQ Partnership with ADTRAN Enables MSPs to Deliver Cloud-Based Security Solutions

TitanHQ has announced a new partnership with ADTRAN, the leading global provider of communications and networking equipment. The partnership will see ADTRAN expand its ProCloud Subscription Services Suite to four new solution categories to better meet the needs of managed service providers (MSPs). The ProCloud Subscription Services Suite brings together industry-leading cloud-based solutions to allow MSPs to better meet the needs of their customers. The four solution categories that now comprise the suite of services are ProCloud Unified Communications, ProCloud Analytics, ProCloud Network Management and ProCloud Security. TitanHQ’s cloud-based web filtering solution – WebTitan – and cloud-based spam filtering solution – SpamTitan – have been added to the ProCloud Security solution. WebTitan allows organizations to carefully control the web content that can be accessed by employees while protecting organisations from a wide range of web-borne threats such as phishing websites and downloads of ransomware and malware.  SpamTitan is a full-service email security solution that...

Read More
Securly Launches Anycast DNS powered Internet Filtering Service
Mar31

Securly Launches Anycast DNS powered Internet Filtering Service

Securly has announced that its K12 web filtering solution is now being served through Anycast DNS on AWS. Anycast DNS speeds up the load time of websites by routing the user to the nearest server to the user’s location. Websites can be located on servers all over the world, which will naturally involve some latency when the user is some distance away from the server. Anycast DNS essentially brings that content closer. Typically, a content distribution network (CDN) is used to achieve this. A CDN is a network of proxy servers and data centers through which web content can be served to reduce latency and ensure availability. Servers are chosen based on which is the closest and has the lowest latency. While CDNs are effective at speeding up the loading of static or cached web content, they do not work so well for dynamic content and do not work with Internet protocols such as DNS. Anycast DNS solves that problem. Anycast allows different web servers to share the same IP address, which means clients requests can be taken to the nearest web server serving that content – the server with...

Read More
Web Filter Longhorn Version 3.2.1 Released
Mar30

Web Filter Longhorn Version 3.2.1 Released

Lightspeed Systems has released an updated version of its education industry-focused web filter Longhorn. Version 3.21 of Web Filter Longhorn incorporates a number of enhancements to make monitoring and managing website and mobile traffic easier. The new web filter has been made more powerful, incorporating enhanced SSL decryption and more intelligent user identification to ensure users can be easily identified regardless of where they are accessing the Internet. The Adaptive AI database has also been improved for more accurate categorization of websites, reducing the potential for the overblocking of website content. Other major updates include: Allowing users to prioritize identification methods and select the order that each method of identification will be attempted. The addition of a second level of control for restricting access to YouTube videos. If used, administrators can set the YouTube filter as strict or moderate. Version 3.2.1 now incorporates Bing Safe Search, in addition to Google Safe Search The certificate installation process has been simplified by changing the...

Read More
GFI Software Launches New Email Security and IT Management Platforms
Mar21

GFI Software Launches New Email Security and IT Management Platforms

GFI Software has announced the launch of two new software platforms which have now been finalized after an extensive period of evaluation. Both products have been in beta form since November 2016 and have been tested by a limited group of users who have provided comments and feedback. GFI Software has taken the feedback on board and has made changes to the implementation of certain features to make the products more user friendly. The solutions include enterprise-class IT management features tailored for small business users. GFI OneGuard is an IT management platform that allows sysadmins to manage, monitor, and secure their networks through a single management console. The platform maintains an inventory of all hardware and software and helps keep all software systems up to date by scanning for out of date installations, unpatched systems and vulnerabilities that could potentially be exploited to gain access to networks and data. Beta testers praised the solution for its unified view of patch management, AV protection, and asset tracking and the ability to automate time consuming...

Read More
Smoothwall Inverness Update Sees Improvements Made to Safeguarding and Firewall
Mar14

Smoothwall Inverness Update Sees Improvements Made to Safeguarding and Firewall

The Inverness update to Smoothwall products sees several improvements made to the firewall and Safeguarding features to improve usability. The changes made to the firewall include a new user interface that clearly displays all firewall rules, together with the configuration specified for each. The rules are also displayed in groups of similar rules to make administration easier. Configuring and editing firewall rules has also been simplified with a new pop-up that requires fewer clicks. Objects can be created and used for groups of IP addresses and services, with one rule applying to several different addresses. Objects can also be reused for other rules. Improvements have also been made to the firewall log viewer, incorporating more information on the screen to make it quicker and easier for users to find the information they need. Details of specific connections can also be found more easily thanks to a new log filter system. The web filter benefits from two new filtering categories – Web Hosting and Collaboration Software. The Web hosting category includes sites that offer...

Read More
Securly Launches DNS-Based iPad Web Filtering Solution
Mar08

Securly Launches DNS-Based iPad Web Filtering Solution

Securly is the first web filtering service provider to develop a DNS-based web filter for iPads. While web filtering is already available for IPad users, the DNS-based approach eliminates the problems associated with browser-based filtering and the use of proxies. While it is straightforward to apply web filtering controls on laptop computers and desktops, extending that filtering to iPads has proved to be a major challenge. It is possible to apply DNS filtering controls to Windows laptops and Chromebooks, but due to the limitations of the architecture on iPads it was not possible to make DNS settings stick across Wi-Fi and LTE networks. iPads use the Safari web browser which could not easily be secured using a DNS-based web filtering system. Consequently, the alternative was to use other browsers that could easily be secured. The problem is that on iPads, links are opened in Safari, which would bypass filters applied to other browsers. In industries such as education this would create a problem. Compliance with CIPA would require the Internet to be filtered on all devices, all the...

Read More
Vizient Inc., Awards Group Purchasing Contract to QliqSOFT Inc.
Feb21

Vizient Inc., Awards Group Purchasing Contract to QliqSOFT Inc.

The clinical communications solution provider QliqSOFT has been awarded a group purchasing contract by Vizient, Inc., the largest member-driven, healthcare performance improvement company in the United States. Under the terms of the agreement, QliqSOFT will offer its popular HIPAA-compliant secure messaging platform – Qliq – its CareChannels collaboration solution, and its OnCall Scheduling service to Vizient members at contract rates, providing enhanced savings to Vizient’s membership and customer base, which includes pediatric facilities, community medical centers, academic medical centers, integrated healthcare delivery networks, and non-acute healthcare providers. “We are extremely excited about our agreement with Vizient to offer our flagship secure texting solution to its membership at contract pricing,” said QliqSOFT CEO Krishna Kurapati. “This validates QliqSOFT’s model of providing the most robust cloud-based secure texting service that does not store PHI in the cloud.” The healthcare industry in the United States has been slow to adopt modern communications solutions....

Read More
TigerText to Provide Healthcare Messaging for New Hampshire Health Information Organization
Feb20

TigerText to Provide Healthcare Messaging for New Hampshire Health Information Organization

TigerText has announced that the company´s secure messaging platform has been selected to provide secure healthcare messaging for the New Hampshire Health Information Organization. The New Hampshire Health Information Organization (HNNIO) is a non-profit organization created to facilitate the digital exchange of patient health information. The HNNIO connects more than one hundred healthcare providers in New Hampshire in order to share patient health information needed for informed care decisions, and to improve quality, efficiency and patient safety while reducing healthcare costs. The organization has selected TigerText to provide secure messaging in order that physicians, nurses, and care providers can quickly connect with one another in a secure and compliant manner that ultimately improves patient care, workflow and ROI. Mary Beth Eldredge, Board Chair of NHHIO said “The use of secure texting can greatly improve the efficiency and effectiveness of care coordination and provider communication.” The TigerText platform will provided the network with an efficient and secure method...

Read More
EdgeWave Wins 2017 Cyber Defense Magazine InfoSec Award for its Content Filtering Solution
Feb14

EdgeWave Wins 2017 Cyber Defense Magazine InfoSec Award for its Content Filtering Solution

EdgeWave has collected a Cyber Defense Magazine InfoSec Award for its leading web security solution iPrism. Cyber Defense Magazine is the leading electronic information security magazine and a regular sponsor of the RDA Conference – The biggest Infosec conference in the world. The magazine has 100,000 monthly readers and provides invaluable advice for information security professionals and is the leading source for IT security information. Throughout the year, Cyber Defense Magazine reviews hundreds of products and gives readers impartial advice on the best cybersecurity products on the market. The best companies and their cybersecurity solutions are recognized through its annual awards program, which is now in its fifth year. Companies can submit their products for consideration for an award and an independent panel of judges reviews the submissions and selects finalists and the winners of each category. The judges are all CISSP, FMDHS, CEH, certified security professional who vote for each product after conducting a thorough review of the company, its data sheets, white papers,...

Read More
Cisco Launches First Cloud-Based Secure Internet Gateway
Feb09

Cisco Launches First Cloud-Based Secure Internet Gateway

The popularity of Software-as-a-Service (SaaS) applications has grown considerably in recent years. Working practices have changed, and SaaS is well suited to an increasingly mobile workforce. SaaS is certainly not a fad. The use of SaaS is likely to grow considerably over the coming years, with Gartner predicting an increase in SaaS use of 70% by 2018. While branch offices used to connect to the Internet via the corporate network, now many offices are connecting to the Internet directly, which means they bypass many network and Internet security controls. Not only does this increase risk, organizations potentially now lack visibility into threats targeting certain sections of the enterprise. One way organizations have got around this is with the use of virtual private networks (VPNs), although VPNs are not always used by employees. A recent survey conducted by IDG revealed 82% of mobile workers did not always use VPNs. An alternative strategy is to use on-premise web gateway solutions; however, multiple secure web gateways add complexity and latency and are therefore far from an...

Read More
Range of Next-Gen Firewall Devices Expanded by Palo Alto Networks
Feb07

Range of Next-Gen Firewall Devices Expanded by Palo Alto Networks

Palo Alto Networks has announced its range of next generation firewall devices have been expanded. Six new hardware firewall appliances are now available, and the range of VM-Series virtual appliances has been increased by three. The purpose-built hardware appliances include three devices in the PA-5200 Series (PA-5260, PA-5250 and PA-5220) which include a new architecture with 72 Gbps App-ID and 30 Gbps Threat Prevention performance. The new PA-5260 model has been developed for high throughput environments and is ideally suited for data center consolidation, higher gateway demands, and for inspecting encrypted SSL traffic. This is the most powerful device in the range and can cope with 32M sessions, has 3.2M SSL-decrypt session capacity, and offers 6.5 Gbps SSL-decrypt throughput. Two devices are offered in the PA-800 series (PA-850 and PA-820). These devices are best suited to medium-sized networks and branch and remote offices. The PA-850 model offers 1.9 Gbps App-ID and 780 Mbps Threat Prevention performance, with multiple CPU cores, and 8GB memory. The PA-220 completes the new...

Read More
Internet Security as a Service Platform Launched by Cyren
Feb02

Internet Security as a Service Platform Launched by Cyren

Cybersecurity firm Cyren has announced the launch of a new Cyren Cloud Security platform, which combines Internet, email, and DNS security with cloud sandboxing in a single cloud-based platform, with all services accessible through a single pane of glass. Email and web security solutions had previously been developed by Cyren, although both were offered as separate solutions. The combination of these cloud security services into the same platform makes it easier for businesses to implement, configure, and manage the solutions. Cyren Cloud Security 4.0 offers users a single dashboard through which summaries of the web and email threats that have been detected and blocked can be viewed. The dashboard allows administrators to see threat summaries at a glance and drill down for more detailed information. Cyren Cloud Security uses a common policy framework for email and web security services with integrated reporting, license management, and customer onboarding. At the heart of the platform is the Cyren GlobalView Threat Intelligence Cloud, which offers industry leading detection,...

Read More
EdgeWave Launches iPrism Secure Web Gateway 8.1
Jan24

EdgeWave Launches iPrism Secure Web Gateway 8.1

EdgeWave has announced the release of version 8.1 of the iPrism Secure Web Gateway. The updated Internet filtering and cybersecurity solution features enhanced security controls and more granular policy control to provide even greater protection while making management of the solution more straightforward. The iPrism Secure Web Gateway is an appliance-based web filtering and Internet security solution that provides protection from a wide range of web-based threats, while allowing organizations to carefully control the content that can be accessed via their Internet connections. The latest version the web gateway is a set it and forget it solution, offering comprehensive URL filtering and malware protection with minimal maintenance. The latest release gives users even better value, usability, and performance, thanks to several key upgrades. While an appliance-based solution, iPrism is deployed as a cloud-hybrid platform and features highly granular controls to keep networks secure and free from malware. The latest release of IPrism includes a totally redesigned reporting system...

Read More
Kerio Technologies Acquired by GFI Software
Jan20

Kerio Technologies Acquired by GFI Software

GFI Software has announced it has acquired Kerio Technologies, a provider of unified threat management and collaboration software for small to medium sized businesses. The acquisition will see Kerio Technologies’ suite of solutions incorporated into GFI Software’s portfolio of products. Kerio Connect, Kerio Control, Kerio Cloud, and Kerio Operator will now be made available to GFI Software MSPs, resellers, and customers. San Jose, CA-based Kerio Technologies was founded in 1997 and has developed a range of communications and security solutions for small to medium sized businesses. Those solutions have been deployed by more than 60,000 businesses in more than 100 countries around the world. The simple but powerful communication and security tools were available exclusively through an extensive partner network with more than 6,500 resellers. The suite of solutions includes email security, UTM/firewalls, VoIP and collaboration tools and were used by millions of end users around the globe. GFI Software is part of the ESW Capital group of companies and has developed its own range of...

Read More
New Security Categories Added to Cisco Umbrella to Monitor and Block DNS Tunneling
Jan17

New Security Categories Added to Cisco Umbrella to Monitor and Block DNS Tunneling

Cisco has added two new security categories to Umbrella to help customers identify and analyze potentially harmful Internet traffic and security threats. The two new categories – DNS tunneling VPN and Potentially Harmful – help customers mange the risk of DNS tunneling and identify and block data loss. DNS tunnelling allows the data of programs and protocols in DNS responses and queries to be encoded. DNS tunnelling is used by anti-virus and anti-malware programs to obtain signatures to update virus definition lists. While this use of DNS tunnelling is legitimate, malicious actors can similarly use DNS tunnelling to hide outbound traffic – communications between malware and C2 servers or to hide the exfiltration of data. Many organizations do not monitor for this type of traffic, so it can be difficult to detect data loss and malware communications. To help customers identify this malicious traffic, Cisco has incorporated the new DNS tunneling VPN as a security category within Umbrella. Commercial DNS tunneling VPN services can be used to mask or hide traffic as DNS queries,...

Read More
New TitanHQ Partnership Sees Enterprise Anti-Spam Solution Pushed Throughout Middle East
Jan03

New TitanHQ Partnership Sees Enterprise Anti-Spam Solution Pushed Throughout Middle East

TitanHQ has announced a new partnership with Middle-East based cybersecurity firm Zservices. The new collaboration will see TitanHQ’s enterprise anti-spam solution – SpamTitan – pushed to large organizations based in the Middle East, Africa, and India. The new partnership deal was announced during Enterprise Ireland’s trade mission to the Kingdom of Saudi Arabia and the United Arab Emirates. TitanHQ was formed in 1999 in Galway, Ireland and has fast grown into a global cybersecurity solution provider with more than 75 partner offices worldwide. Over almost 20 years, TitanHQ has developed a deep understanding of the complex threat landscape and has developed a range of cybersecurity solutions to protect organizations’ networks from increasingly sophisticated web and email-borne threats. TitanHQ has enjoyed tremendous global success with its anti-spam and web filtering solutions. The affordable, subscription-based security solutions are powerful tools that keep enterprise networks secure from web and email-borne threats. TitanHQ’s SpamTitan, WebTitan, and ArcTitan...

Read More
Web Security Gateway Updated by Barracuda
Nov22

Web Security Gateway Updated by Barracuda

Barracuda Networks has announced new updates have been released for its Web Filter Gateways (version 11.0) that provide greater protection from advanced threats and ransomware. Customers can now benefit from Barracuda’s cloud-based microservice – Advanced Threat Detection – which provides greater protection from targeted attacks, including ransomware, thanks to integration with Barracuda Web Filter Gateways. The latest models of the Barracuda Web Security Gateway – models 610 and above – now include dedicated SSL acceleration hardware to speed up SSL inspection of encrypted web traffic. As more sites move to HTTPS, including those created by threat actors, it is essential for encrypted traffic to be inspected since these encrypted connections are now often used to hide inappropriate or malicious content. However, SSL inspection can put a strain on network performance as it is resource intensive. The new SSL acceleration hardware improves performance, doubling the speed of SSL inspection. The Web Filter Gateways now integrate seamlessly with Barracuda NextGen firewalls and...

Read More
Secure Mobile Access 1000 Series OS 12.0 Launched by SonicWall
Nov16

Secure Mobile Access 1000 Series OS 12.0 Launched by SonicWall

As more businesses take advantage of remote workers, and the use of mobile devices grows, businesses seek solutions that provide an equivalent level of protection for remote and mobile workers as can be achieved within an organization’s facilities. SonicWall’s answer is the Secure Mobile Access (SMA) solution which allows security policy enforcement for mobile and remote workers. This week, SonicWall announced it has launched an updated version of its Secure Mobile Access 1000 Series OS. Version 12.0 includes several enhancements to improve security for remote and mobile users, regardless of the data types accessed or devices used to connect to cloud and on-premise resources. The solution offers enforced SSL VPN to essential applications, data and resources regardless of device type or operating system, with access granted only to trusted users with access rights determined by the health metrics of the connecting device and its location. The solution allows up to 20,000 connections per appliance and large enterprises can combined appliances to provide hundreds of thousands of...

Read More
Millennials Pose Significant Risk to IT Security, Reports Forcepoint
Oct26

Millennials Pose Significant Risk to IT Security, Reports Forcepoint

The results from a recently published Forcepoint survey shows millennials are placing the security of their organizations at risk by engaging in risky behaviors. The survey showed millennials were more likely to take short cuts to improve productivity, even though those behaviors placed security at risk. Forcepoint says action needs to be taken now to prevent the attitudes and behaviors of the younger generation from taking hold, especially in government organizations. The failure to address security issues could place U.S government IT systems in jeopardy. The study was conducted on 670 individuals and assessed attitudes and behaviors that increased the risk of cyberattacks, malware infections, and data breaches. The survey showed that millennials were regularly using unsecured WiFi networks for work without the use of VPNs. Password sharing was common, as was the belief that cybersecurity was an issue for IT departments to deal with. The survey suggests millennials believe they are well educated in cybersecurity matters and are confident about their level of security awareness....

Read More
TigerText Launches TigerFlow: A Clinical Communications Platform for Value-Based Care
Oct20

TigerText Launches TigerFlow: A Clinical Communications Platform for Value-Based Care

TigerText, the leading secure messaging platform provider for the healthcare industry, has announced the launch of Tigerflow: A new enterprise-wide clinical communications platform for healthcare providers.  TigerFlow has been developed to help healthcare organizations streamline communications with care teams and provide physicians, nurses, and support staff with easy access to actionable information through a single mobile-friendly ecosystem. The workflow-centric platform has data integration capabilities allowing information that would normally only be accessible through disparate workstations to be accessed by a wide range of healthcare professionals through their mobile devices, naturally with appropriate access controls to ensure only individuals authorized to view the information are granted access. The new platform incorporates a range of functions designed to accelerate adoption, reduce operational costs, raise productivity of the workforce and improve patient outcomes. The platform can integrate with clinical electronic medical record systems and features intelligent...

Read More
TitanHQ Protects McDonalds Restaurants from Malicious Email Messages
Oct15

TitanHQ Protects McDonalds Restaurants from Malicious Email Messages

TitanHQ has announced a new partnership with McDonalds (Phillipines) to protect employees from phishing attacks and emails used to spread malware and ransomware infections. TitanHQ has now completed rolling out its award-winning anti-spam solution – SpamTitan – and is now protecting McDonalds employees across the 500+ McDonalds restaurants throughout the Philippines. While international law enforcement operations have successfully taken down major spamming botnets and there has been a reduction in spam messages as a result, spam email remains a major attack vector. In fact, figures from the Anti-Phishing Working Group (APWG) show that phishing attacks are on the increase. APWG recently announced that there are now more phishing attacks taking place than at any other time in history. While phishing and other malicious emails used to be relatively easy to identify, cybercriminals have added a new level of sophistication to their phishing attacks. It is becoming increasingly difficult for employees to identify phishing emails; therefore, a technological solution is required to prevent...

Read More
GFI Software Launches Customer Loyalty Program
Sep01

GFI Software Launches Customer Loyalty Program

The email archiving and cybersecurity solution provider GFI Software has announced it has launched a new customer loyalty program called GFI Prime. Customers qualifying for GFI Prime will be given benefits as a reward for choosing GFI Software as their cybersecurity or email archiving partner and will be able to select at least one additional product from the GFI Software range and install and use the solution free of charge. The program rewards customers who have been using qualifying GFI Software products for more than a year. From September 1, 2016, customers qualifying for the GFI Prime loyalty program will be able to install one additional GFI software product immediately. When customers take out a new plan over multiple years, or renew a multi-year license or subscription, they will be allowed to install an additional GFI Software product without charge. GFI Software notes that the additional products will continue to be provided free of charge as long as licenses or subscriptions to qualifying GFI Prime products continue to be renewed. Existing customers can check...

Read More
EdgeWave Secures WiFi Network at 2016 US Open Tennis Championship
Aug29

EdgeWave Secures WiFi Network at 2016 US Open Tennis Championship

The La Jolla, CA-based email and web security firm EdgeWave has announced it has been selected as the cybersecurity partner at for this year’s US Open Tennis Championship at Flushing Meadows, NY and will be providing the technology to keep the tournament’s WiFi networks secure. Today, sports fans expect to be provided with WiFi access at sports events, yet it is important for event organizations to ensure that the Internet can be accessed securely and acceptable usage policies are enforced. That means blocking access to undesirable content such as pornography and webpages that are known to contain malware. This is the ninth consecutive year that EdgeWave has been selected to secure mobile Internet access for the US Tennis Association (USTA) at the U.S Open Championship. This year, the USTA WiFi network will be available to more than 750,000 fans, athletes, and sports reporters who will be assured of a secure connection and provided with high-speed Internet access. The USTA Billie Jean King National Tennis Center has an expansive mobile Internet infrastructure and is one of the most...

Read More
Securly Simplifies the Deployment of Cloud-Based Web Filters
Aug10

Securly Simplifies the Deployment of Cloud-Based Web Filters

There are several issues associated with appliance-based web filters. The cost of the appliance, the lack of scalability, problems with deployment, and the bottlenecks they can create when bandwidth-heavy applications are used or streaming services are being accessed by multiple users. These problems have seen many organizations turn to cloud-based filtering solutions. Cloud-based web filters require no hardware, are highly scalable, easy to deploy, and have the same level of granular control as their appliance-based counterparts. Since no expensive hardware is required, they can also offer significant cost advantages over appliance-based web filters. One disadvantage of cloud-based filtering is that it is often necessary to speak to customer service teams to implement the solution. Many organizations struggle to configure the solution on their own. Since customer service teams are usually busy, this can delay the implementation of a cloud-based web filter. Securly is now offering a solution. An entirely self-servable cloud-based web filter that can be set up through a browser...

Read More
SafeDNS Enhances Web Filter to Improve Detection of Malicious Resources
Aug01

SafeDNS Enhances Web Filter to Improve Detection of Malicious Resources

SafeDNS, a provider of web filtering solutions for home and business users, has launched a new version of its platform featuring new proprietary technology that has significantly improved the detection of malicious websites. Since the new technology was implemented, detection of malware and other malicious websites and webpages by SafeDNS has increased by 66%. The solution is now able to accurately detect 98% of malicious websites. Many web filtering solutions rely on blacklists of known malicious websites to determine whether access to page content should be granted. Unfortunately, solutions that only rely on blacklists fail to block a large percentage of phishing websites and sites containing malware and exploit kits, as there is often a significant delay between the creation of a malicious website and its inclusion on a blacklist. The new SafeDNS system places less reliance on static lists and instead maintains its own list of websites based on its own analyses of sites. Multiple new methods of assessing websites have been incorporated into the latest version of the platform...

Read More
Forcepoint Introduces New Technology to Secure Connections for Roaming Workers
Aug01

Forcepoint Introduces New Technology to Secure Connections for Roaming Workers

IT teams may be able to secure their wired and wireless on-premises networks, although it is much harder to secure users’ connections to the Internet when they are outside the corporate network and connect to the Internet via wireless hotspots. Organizations with a high percentage of remote or mobile workers often struggle to secure employees’ devices and provide secure, reliable access to data via third-party networks and public Wi-Fi hotspots. A highly mobile workforce is now becoming the norm with more workers now accessing networks remotely, and that calls for technological solutions to ensure devices and data remain secure.  Unfortunately, while many cloud-based security solutions can be deployed to reduce risk, many do not give IT security teams visibility in the actions taken by remote workers. Many solutions also mask the users’ true locations, which means it is not possible to access localized content and neither enforce geofencing controls. Forcepoint has now developed a solution that helps organizations improve security for a mobile workforce and ensure visibility into...

Read More
New Blue Coat Appliance Gives Organizations Better Visibility into Encrypted Traffic
Jul31

New Blue Coat Appliance Gives Organizations Better Visibility into Encrypted Traffic

Malicious actors are increasingly using SSL traffic to hide malware according to security researchers at Blue Coat Systems. The use of SSL/TLS encrypted sites is growing due to concern about the privacy of website visitors. While SSL/TLS offers increased security, it also gives malicious actors the opportunity to hide malware, command and control center communications, and data exfiltration. The threat is rising at an alarming rate. Blue Coat researchers identified 58 times as many SSL-cloaked C&C channels and 200-fold rise in C&C servers using SSL in 2015. While organizations have implemented URL filtering and secure web gateways to protect their networks from malware, many solutions do not have visibility into encrypted traffic. Many organizations find that security appliances that can decrypt and re-encrypt SSL traffic are not without their issues. The capacity of some appliances and filtering solutions reduces by as much as 80% when configured to inspect SSL traffic, meaning SSL inspection must be turned off or capacity needs to be expanded. Blue Coat’s solution is a...

Read More