User Authentication: Biggest Cyber Risk in Healthcare

User Authentication IS THE MOST Common Cyber Risk in Healthcare either in Hospitals and Health Systems. User authentication short-comings, endpoint data leakage, and too much end-user permission are three of the most common cyber risks facing health systems and hospitals. I have been reviewing security profiles in the healthcare space for at least the past…

SamSam Ransomware – Recent Alert, Summary and Recommendations

Yesterday, December 3, The United States Department of Homeland Security (DHS), National Cybersecurity and Communications Integration Center (NCCIC), and the Federal Bureau of Investigation (FBI) issued an activity alert to inform computer network defenders about SamSam ransomware, also known as MSIL/Samas.A.  This blog shares summary of the above analysis including vulnerabilities that bad-actors are using…

Azure AD Dynamic Groups Walkthrough

Microsoft has announced that Azure AD Dynamic Groups is now available.  This will allow you to create groups that will automatically add and remove users based on AD Properties like Location or Department. What will you need: Azure AD Premium License (documentation says P1, but I’ve heard others say P2 is required) An AD Property…

Quick Stats: Healthcare Ransomware Attacks

It is a fact that most ransomware attacks are taking place in the U.S. Specifically, healthcare and local governments are the apparent favorite targets amongst hackers. About 24% of them were healthcare ransomware attacks thus far in 2018, but “the why” to that degree is unknown. I suggest that hackers might believe these targets to…

Find and Remove All WSUS Deadlines

Every admin at some point has had the call that an update has just installed on someone’s machine in the middle of an important meeting or something similar. This can often be caused by deadlines set in WSUS. While deadlines can be good for forcing updates at a particular time, they can also come back…

Are Data Breaches in Healthcare on the Rise?

The security surrounding personal health information, patient records, and personal data (in general) is obviously a very important topic throughout the world.  Each year, many millions of data breaches in healthcare take place due to a broad range of causes.  One of the industries where these data are plentiful is the Health and Human Services sector…