Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Taking the pulse of cyber security in healthcare
#1
[Image: Healthcare-397x600.jpg]
Healthcare

Large hospitals often have thousands of workstations used by multiple employees to access confidential patient data, so securing them can be a major challenge.

Endpoint security specialist Duo Security has compared its customers in healthcare with those in other industries to determine how the sector differs in its security requirements.

Among the findings are that healthcare customers are logging into twice as many applications as the average user, widening the attack vector. Twice as many healthcare endpoints have Flash installed and three times as many healthcare customers have Java installed on their devices, again, putting them at greater risk of vulnerabilities and exploitation.

Healthcare customers are also more likely to choose Internet Explorer 11 as their preferred browser, compared to the latest version of Chrome favored by other users. Around 22 percent of healthcare customers browse dangerously on unsupported versions of IE.

Windows is by far the most popular OS in healthcare organizations at 82 percent. Ten percent of healthcare customers are on Windows 10, while another three percent run the now unsupported Windows XP.

"Keeping endpoints up-to-date with the latest versions of operating systems, browsers, plugins and more is no simple task for healthcare IT admins. Furthermore, they may use applications with dependencies on software versions commonly targeted by malicious hackers," says Mike Hanley, Director of Duo Labs. "It only takes one outdated device for a hacker to exploit a known vulnerability, install malware, steal passwords and/or gain access to an entire healthcare system and databases of patient data".

In order to keep their endpoints safe, Duo recommends that healthcare organizations keep their OS, browsers, Flash, Java and other software up to date, and apply patches as soon as they're available from vendors. They need to enable good security controls, like strong, unique passwords; two-factor authentication; and access security policies to detect, warn, notify and block outdated devices. They should also enable and require a minimum standard of security features on users’ devices, including encryption, screen locks, passcodes, Touch ID and more. It's also important that they encrypt patient data while in transit, and in storage, and never transmit it over public networks.

You can find out more about effective endpoint protection for all industries on the Duo Security site.
source
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Garry Kasparov and Ondrej Vlcek on taking back control of the internet mrtrout 0 538 12-01-2021 , 09:25 AM
Last Post: mrtrout
  FBI's Email System Hacked to Send Out Fake Cyber Security Alert to Thousands mrtrout 0 540 11-16-2021 , 05:20 AM
Last Post: mrtrout
  Philips healthcare infomatics solution vulnerable to SQL injection mrtrout 0 494 11-08-2021 , 02:20 AM
Last Post: mrtrout
  Phished Healthcare Provider Takes Legal Action Against Amazon Bjyda 0 787 03-27-2021 , 11:11 PM
Last Post: Bjyda
  Supermicro, Pulse Secure release fixes for 'TrickBoot' attacks Bjyda 0 1,584 03-05-2021 , 09:37 PM
Last Post: Bjyda

Forum Jump:


Users browsing this thread: 1 Guest(s)