Thursday, 7 April 2016

Forcepoint: Optimism Rises on Integrating Web Security, Data Loss Prevention, and Analytics Products

IDC Insight Report – January 2016

WHITEPAPER

Advances in cloud computing, mobility and other disruptive technologies create new ways to move your business forward – they also present new challenges as insider threats and targeted attacks look for new ways to exploit them.

Relying on a patchwork of security products means more complexity for your overtaxed and under-resourced security teams and more risk to your data.

In this report, International Data Corporation (IDC) showcases how Forcepoint solutions and their flexible delivery options let your organization safely leverage the Cloud, mobile devices and other advancements as well as eliminate the complexity of managing a patchwork of point products.

DOWNLOAD THE IDC INSIGHTS REPORT and Read More Here : http://ift.tt/1VAO7xB



from health IT caucus http://ift.tt/1RS5cOY
via IFTTT
Posted by at No comments:
Labels: ,

Third-party libraries are one of the most insecure parts of an application

Much has been written to guide software developers on how to develop secure software. Despite this general awareness, we continue to see vulnerable software produced. One of the observations in the HPE Cyber Risk Report 2016 is that attackers have shifted their focus from servers and operating systems directly to applications.They see this as the easiest route to accessing sensitive enterprise data and are doing everything they can to do that—including exploiting third-party software components. After all, an attacker looks for any application weakness to gain access to an organization’s sensitive data and doesn’t care how it got there.

Let’s look at some of the research around third-party library security and some of the strategies and tools you can use to mitigate these risks.

Fast dev times, for a price

All categories of applications tend to use third-party libraries to accelerate the development process. Based on analysis of the Central Repository (one of the largest open source code repositories), Sonatype estimatesthat 90 percent of all software development requires the downloading of components. While most critical vulnerabilities in third-party libraries are disclosed as Common Vulnerabilities and Exposures (CVEs), it is disconcerting to note that the applications that use them are not updated in a timely manner. Also, CVEs do not represent all of the vulnerabilities found in third-party software, and other unidentified weaknesses may exist.

HPE Cyber Risk Report 2016

A great example of this is the significant security flaw researchers recently discovered in the GNU C Library. A domain-name lookup function known as getaddrinfo() contains a buffer overflow vulnerability that could cause a system crash or allow attackers to remotely execute malicious code (CVE-2015-7547). This vulnerability went undiscovered for seven years and unfixed for seven months following its initial report in July.

 

To Read More , Click Herehttp://ift.tt/1RZqBIh



from health IT caucus http://ift.tt/1TEhNtJ
via IFTTT
Posted by at No comments:
Labels: ,

Stolen Laptop Leads To Possible Data Breach For Premier Healthcare

Device security brought to the forefront again in wake of loss of device.

Premier Healthcare of Bloomington, IN has reported the theft of a laptop containing the private information of approximately 205,000 individuals. Premier said 1,769 of those individuals’ Social Security numbers and financial information could potentially be accessed on the computer.

The laptop, which was reportedly stolen from the physicians group’s billing office, on January 4, 2016, contained emails that included patients’ names, addresses, dates of birth, insurance information, and medical records. The laptop was taken from a locked and alarmed administrative office of the billing department, according to Healthcare IT News.

The laptop was password-protected, but not encrypted, underscoring the importance of multi-factor authentication when dealing with sensitive patient data. Files on the laptop included PDF documents, spreadsheets, and screenshots of patient billing issues. For the full article click here 



from health IT caucus http://ift.tt/1pqrq2F
via IFTTT
Posted by at No comments:
Labels: ,

Wednesday, 30 March 2016

Telemedicine programs boosting patient engagement but not ROI, study says

Telemedicine is changing from a specialty offering to a more mainstream service, with a new study showing that two-thirds of respondents name telemedicine as the top or one of the highest priorities – a 10 percent increase from the 2015 survey results.

But challenges remain, notably reimbursement and earning a return on the investments needed to fund telehealth technologies and programs.

“Telemedicine decision-making is rapidly moving from individual departments and specialties to an enterprise initiative,” said Steve McGraw, CEO of REACH Health, which conducted the study. “Both hospitals and health systems reported significant increases in the average number of telemedicine service lines which are active or being implemented.”

REACH Health surveyed 390 healthcare executives, physicians, nurses and other professionals, covering a wide variety of telemedicine-related topics such as priorities, program models, management structures and more. For the full article click here 



from health IT caucus http://ift.tt/1M0fr6Q
via IFTTT
Posted by at No comments:
Labels: ,

Wentworth Miller’s Response To Body Shaming Was About Much More Than Mental Health

Being a celebrity in 2016 seems to go hand in hand with becoming a meme. But Wentworth Miller turned a body shaming meme about himself into an important message about mental health and body image. Recently, the Prison Break star fell victim to a cruel and arguably pointless meme by The Lad Bible, a UK-based website that’s been accused of sexism and of objectifying women repeatedly. But his response was a reminder that body shaming — whether being directed at someone who struggles with mental health or not — is never acceptable.

In this particular instance, Lad Bible shared a side by side composite of actor and director Miller on its Facebook page: A Prison Break promotional picture alongside a paparazzi shot of the star from 2010. The caption was a typical case of “classic banter:” The excuse often given by many individuals to make their prejudicial statements seem like innocent jokes, simply because they “didn’t mean it.” As for the image of Miller, the focus of the derogatory image was put on his weight. The caption read, “When you break out of prison and find out about McDonald’s monopoly.” For the full article click here 



from health IT caucus http://ift.tt/1Sx5LzL
via IFTTT
Posted by at No comments:
Labels: ,

Digital health: South Island electronic referrals hit one million

The Government’s eReferrals system is proving to a hit, with Health Minister Jonathan Coleman revealing more than one million electronic referrals to specialists have been successfully processed in the South Island.

The South Island Electronic Request Management System allows general practice teams to submit requests for specialist advice direct to a secure database of over 700 specialists.

“More than a million South Islanders have had access to timely specialist advice as a result of the eReferrals system,” says Coleman.

“First launched in Canterbury DHB in 2009, the eReferrals system enables a faster, smoother and more accurate transfer of patient information,” he explains.

“Replacing hand-written referrals with eReferrals has also reduced inaccuracies and has saved time for clinicians,” he adds. For the full article click here 



from health IT caucus http://ift.tt/1M0fr6I
via IFTTT
Posted by at No comments:
Labels: ,

Two more healthcare networks caught up in outbreak of hospital ransomware

Hospitals and healthcare providers are increasingly falling victim to crypto-ransomware attacks. While attacks over the past few months have not been highly targeted thus far, they have caused a great deal of disruption. And disruptions at hospitals can have a much more dire impact than at most other organizations vulnerable to malware-based extortion.

This past week, that point was brought home again when multiple US hospitals acknowledged that they had been forced to take systems offline in response to crypto-ransomware infestations. And on Wednesday, security researchers at Cisco Talos Research revealed a new strain of crypto-ransomware designed to attack vulnerable servers that appeared to be primarily focused on targets in the healthcare industry.

The latest disruption came on Monday, when Columbia, Maryland based MedStar Health reported malware had caused a shutdown of some systems at its hospitals in Baltimore. For the full article click here 



from health IT caucus http://ift.tt/1M0ftvo
via IFTTT
Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)