Phishing Attack Exposes 447,000 Florida Patients
Phishing Attack Exposes 447,000 Florida Patients. Orlando Family Physicians, LLC began notifying 447,426 patients that it was the victim of a phishing attack on its employee email accounts.
Six things to know:
- On April 15, an unauthorized party accessed the email account of an employee by obtaining their user ID and password through a phishing email, according to a July 20 news release.Â
- After the attack, the physician practice launched an investigation and found that three other employee email accounts had been breached. Within 24 hours, unauthorized access to each of the four email accounts was terminated, according to the news release.
- On May 21, the investigation determined that patient data in the email accounts may have been exposed. On July 9, the patients, prospective patients, employees and other people who had data in the email accounts were identified.
- Exposed data may include names, health insurance information, Social Security
Do you bring your own device to work?
Bringing your own devices such as your personal smart phone, tablet or laptop to the work place could make you a target for cybercriminals. When used for work, your personal devices contain sensitive information, provide a gateway to the corporate network or could be used as carriers to distribute malware.
Â
While bringing your own device has its advantages, it will most probably not be fully protected to the same degree as
your corporate device is. You are ultimately responsible for ensuring that your device is protected.
Â
HERE ARE A FEW TIPS TO HELP YOU PROTECT YOUR DEVICES:
- Be Aware of Policy – don’t use your own devices for work before understanding the applicable policy.
- Your Strong PIN Code – your strong pin or pass-code will lock attackers out.
- Operating Systems – on all devices, phones, tables, etc. should be the latest version. Install apps from official app stores only and
UEWA – Ubiquiti Enterprise Wireless Admin
I’m excited to say that I have obtained the UEWA – Ubiquiti Enterprise Wireless Admin certification.
A great starting point is to get yourself familiar with what you will be going through in class. I downloaded the UEWA Training Guide and made sure I completed it. Study the material well if your not a day to day wireless deploying admin.Â
I know when I took on the challenge of obtaining the UEWA – Ubiquiti Enterprise Wireless Admin certification I did not expect having to learn physics of wireless or mathematical equations.Â
This class will teach you best practices for deploying Wifi and Unifi specific settings to squeeze the best performance out of each wireless access point.Â
Â
Additionally you will learn:
WLAN Fundamentals
- Unlicensed Radio Spectrum
- Channel Operation
- Regulatory Domains
- WLAN Standards
- Wireless Access Methods
- Network Equipment
WLAN Planning
- Wireless Technology
- Coverage & Channels
- TX Power
- Antenna Gain
- Channel Availability
- Signals
Do you know the signs of a money mule scam?
Listen, I know it’s hard out there and there are so many ways to make money that seem legit and we all want an opportunity to make quick money but if you don’t know the signs of a money mule scam you will be taken for a ride. When cybercriminals earn money via illegal means, they need a way of ‘washing’ the money to make it seem legitimate and get it back into mainstream circulation. To do this, they recruit money mules.
The mule is a person who transfers illegally obtained money between different payment accounts, very often in different countries, and earning commission for doing it.
Cybercriminals use online advertising to recruit victims via:
- Social Media
- Emails
- Get rich quick schemes
They even create fake websites that look like legitimate websites to make the job seem like it is coming from an established organization.
Keep an eye out for
… Read the rest
The 18 Identifiers Of PHI Crossword Puzzle
In this crossword puzzle we will identify a few protected health Information (PHI) words. These words are key to protect ourselves and everyone else that are protected under the Health Insurance Portability and Accountability act (HIPAA).
Click on the link to learn The 18 Identifiers Of PHI, it will also help you with this Crossword Puzzle.
Â
Vertical
Horizontal
I hope this article was helpful, if
… Read the rest
QUICK HIPAA FACT SHEET
This quick HIPAA fact sheet will point you in the right direction! Did you know HIPAA, the Health Insurance Portability and Accountability Act was created in 1996? HIPAA is designed to maintain strict privacy over an individual’s health records.
Other acronyms you need to know for HIPAA compliance: PII (Personally Identifiable Information), EPHI (Electronic Protected Health Information) or just PHI (Protected Health Information).
Â
HIPAA’s Goal:
To increase the privacy of medical and related information by controlling who has access to it. If you’re a healthcare professional, you are required to understand and follow HIPAA.
Â
Examples of PHI:
Patient name, address, date of birth, phone number, medical record number, Social Security number, email, and diagnosis.
Â
Who Has to Follow HIPAA?
Health plans, healthcare clearinghouses, and healthcare providers. As of January 2013, with the addition of HITECH, HIPAA also now applies to lawyers, consultants, contractors, cloud providers, software vendors, and more.
Â
How
… Read the rest
CYBER SECURITY IS UP TO ALL OF US!
Having a proper cyber security posture is up to all of us. All information created in the company is subject to the behavior of every collaborator. Use complex passwords and don’t share them with anyone. Note the sender’s and recipient’s domains when exchanging messages. When dealing with suppliers, have the confidentiality terms in mind.
THE HIGHER THE JOB POSITION, THE WORSE THE LOSSES CAUSED BY LACK OF KNOWLEDGE
Managers and leaders must be an example! Decision-making roles are always on the attackers’ radar. Decision makers exchange a lot of confidential information that, if leaked, can cause great loss to the company’s reputation and finances. Use complex passwords and enable two-step verification to create barriers against the attackers.
IF YOU FIND ANYONE NOT COMPLYING WITH SECURITY PRACTICES, DEMAND PROPER BEHAVIOR
Information leaks affect the daily life of all collaborators. If you find unlocked computers, passwords on Post-it Notes, and information about … Read the rest
Kaseya Script To Remove Splashtop
This is a simple Kaseya Script to remove the Splashtop agent from workstations and servers.
Â
What does it do?
I am glad you asked. The script uses the Kaseya scripting engine to execute the uninstallation string for the Splashtop agent. It is a very simple script but it does the job.
Â
Â
<?xml version="1.0" encoding="utf-8"?> <ScriptExport xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns="http://www.kaseya.com/vsa/2008/12/Scripting"> <Procedure name="Splashtop Removal CMD" treePres="3" id="1984353680" folderId="113237001566792" treeFullPath="myProcedures - [email protected]"> <Body description=""> <Statement name="ExecuteShellCommand" continueOnFail="false"> <Parameter xsi:type="StringParameter" name="Command" value="MsiExec.exe /x {B7C5EA94-B96A-41F5-BE95-25D78B486678} /qn" /> <Parameter xsi:type="EnumParameter" name="ExecuteAccount" value="System" /> <Parameter xsi:type="BooleanParameter" name="Is64Bit" value="False" /> </Statement> </Body> </Procedure> </ScriptExport>
I hope this article was helpful, if you have any questions please feel free to contact me. If you would like to be notified of when I create a new post you can subscribe to my blog alert.
… Read the rest
Back To School Safety And Security Checklist
It’s that time again, many of you are going back to school and a proper safety and security checklist will help you for the coming year. Schools hire new Administrative staff and teachers, teachers and students move to new classrooms, school buildings undergo construction. Before the new school year begins, teachers, administrators and parents should review old emergency plans and make updates accordingly. Share the below lists with the people in your community to make this upcoming school year one of the safest and most secure year yet!
Â
Administrators
- Ensure emergency protocols are in place and posted in each classroom.
- Go over basic emergency protocols with teachers and staff (i.e.: Evacuation, Shelter in Place, Lockout and Lockdown.) Answer questions when possible.
- Review key plan elements such as alert capability, relocation sites, and transportation elements to ensure they are in place.
- Develop a drill-schedule for early and mid-year that practices the
Physical Security Crossword Puzzle
As businesses become more dependent on technology so does the need for digital and physical security. Technology demands a significant amount of physical security to safeguard data, servers, networks and other devices.
Security awareness is not just about preventing cyber attacks, it is also about protecting data in the physical world. Solve the Crossword puzzle below using terms related to physical security.
Â
Loading ...